Chief Information Security Officer

At Children's Wisconsin, we believe kids deserve the best. Children's Wisconsin is a nationally recognized health system dedicated solely to the health and well-being of children. We provide primary care, specialty care, urgent care, emergency care, community health services, foster and adoption services, child and family counseling, child advocacy services and family resource centers. Our reputation draws patients and families from around the country. We offer a wide variety of rewarding career opportunities and are seeking individuals dedicated to helping us achieve our vision of the healthiest kids in the country. If you want to work for an organization that makes a difference for children and families, and encourages you to be at your best every day, please apply today. Please follow this link for a closer look at what it's like to work at

Children's Wisconsin:

https://www.instagram.com/lifeatcw/ Children's Wisconsin is seeking an experienced leader to serve as the Chief Information Security Officer (CISO) . Children's Wisconsin is partnering with WittKieffer on this search. Interested candidates should apply directly through the following link: Chief Information Security Officer | WittKieffer Job Summary The Chief Information Security Officer (CISO) provides enterprise leadership for cybersecurity, information protection, physical security alignment, and business continuity across the health system. Responsible for defining and advancing the organization's security strategy and risk management framework to protect the confidentiality, integrity, and availability of information, clinical systems, medical technologies, and critical infrastructure. Leads the development, implementation, and continuous improvement of the organization's enterprise security program. This includes establishing governance structures, policies, standards, and controls that align with regulatory requirements, industry best practices, and the evolving threat landscape. Working closely with executive leadership, clinical leaders, operational partners, and technology teams, this position ensures that security requirements are embedded in infrastructure architecture, digital platforms, medical devices, and clinical technologies. The role serves as the organization's principal advisor on cybersecurity risk and organizational resilience. Responsible for the strategic oversight and continuous advancement of the organization's security capabilities and ensures the enterprise maintains a proactive and resilient posture against cyber threats and operational disruptions. In addition, directs enterprise programs related to cybersecurity risk management, regulatory compliance, business continuity, and disaster recovery, ensuring the organization can anticipate, withstand, and recover from security incidents and disruptions to critical services.

Minimum Requirements:

Master's Degree (or equivalent knowledge) in Business or Information Technology or other related fields. required 10+ years of management experience in strategically planning, directing, and leading materials management, distribution, purchasing, and inventory management functions for an integrated healthcare system. required Extensive knowledge of and skills in system-wide security strategies, processes, and programs that support a service-focused, cost-effective, and centralized model. Knowledge of common information security management frameworks, such as ISO 27001, NIST, 800-53 and Cybersecurity Framework, and

IEC 62443.

Skills in developing strategic and tactical plans to meet business objectives in a large healthcare system. Skills in developing sound proposals and successfully implementing program/project plans. An understanding of health care delivery systems and health care dynamics. Demonstrates expert-level problem-solving, creativity, and strategy development in the face of new competitive challenges. Excellent written and verbal communication skills necessary to communicate effectively with senior administrators, department leaders, physicians, vendors, and clinical staff. Strong interpersonal skills to effectively form collaborative relationships with senior administrators, department managers/directors, physicians, vendors, and clinical staff. Proficiency in Microsoft Office (Word, Excel, PowerPoint) or similar products. Certified in Risk and Information Systems Control (CRISC).

Licenses and Certifications:

CISSP-Certified Information Systems Security Professional

• International Information Systems Security Certification Consortium preferred CISM-Certified Information Security Manager
• ISACA preferred CISA-Certified Information Systems Auditor
• ISACA preferred Children's Wisconsin is an equal opportunity / affirmative action employer.

We are committed to creating a diverse and inclusive environment for all employees. We treat everyone with dignity, respect, and fairness. We do not discriminate against any person on the basis of race, color, religion, sex, gender, gender identity and/or expression, sexual orientation, national origin, age, disability, veteran status, or any other status or condition protected by the law.

Certifications/Licenses:

CISA-Certified Information Systems Auditor

• ISACA, CISM-Certified Information Security Manager
• ISACA, CISSP-Certified Information Systems Security Professional
• International Information Systems Security Certification Consortium