Executive Director, Technology Risk Management - City of Hope

Key Responsibilities

• Develop and execute a comprehensive technology risk management framework aligned with organizational goals and regulatory requirements.
• Lead cybersecurity and incident response teams, ensuring rapid detection, containment, and remediation of threats across all sites.
• Establish and maintain IT governance structures, policies, and controls to safeguard data privacy and system integrity.
• Oversee cloud security posture, including risk assessments, vendor management, and continuous monitoring of cloud environments.
• Collaborate with senior leadership, clinical stakeholders, and external auditors to report risk metrics and drive remediation initiatives.

Requirements

• 10+ years of experience in technology risk, cybersecurity, or IT audit, preferably within healthcare or highly regulated industries.
• Proven expertise in risk assessment methodologies, governance frameworks (e.g., NIST, ISO 27001), and regulatory compliance (HIPAA, HITECH, GDPR).
• Strong leadership skills with a track record of building and directing high‑performing security and risk teams.
• Hands‑on experience with cloud platforms (AWS, Azure) and implementing cloud security controls.
• Excellent communication and stakeholder management abilities, capable of translating technical risk concepts to executive audiences.