The Human Genome Sequencing Center (HGSC) at Baylor College of Medicine is seeking an experienced Lead, IT Infrastructure and Systems to design and manage information and network security systems and network facilities within the Human Genome Sequencing Center.
The field of genomics is now in a new phase of exploring individual DNA sequence variation and its association with human diseases. A major focus of the HGSC is the deciphering of the genetic architecture of common complex diseases. These include cardiovascular disease (CVD), neurodegeneration, and cancer predisposition – all major causes of adult death with strong heritable components. Understanding the genetic architecture of these disorders is the key to identifying gene changes that directly cause the diseases in order to direct therapeutic strategies. This pathway from ”bench to bedside” is the foundation of the new national initiative in Precision Medicine.
In direct response to this new era, the HGSC has launched the HGSC Clinical Lab (HGSC-CL), which has a complete infrastructure to support large-scale sequencing and genomics projects. With its sophisticated informatics core and pipeline and state-of-the-art technology development core, the CAP accredited/CLIA certified HGSC-CL can deliver clinical test grade data for returning results to diagnosing physicians. The environment is currently hybrid, with some components local while others are cloud-based. This position will spearhead IT and Security Compliance and mitigate risk for Baylor College of Medicine infrastructure and systems.
This position is eligible to work a hybrid work schedule.
- Develop and maintain the organization's IT infrastructure and systems roadmap and ensure alignment with the overall business strategy.
- Direct and deliver Center Security Compliance activities, including both business-as-usual processes and improvement initiatives as planned on an annual basis.
- Lead the design, implementation, and maintenance of the IT infrastructure and systems, including hardware, software, networks, servers, storage, and security.
- Develop, implement, maintain, and oversee processes aimed at ensuring compliance with Baylor and HGSC security policies and procedures.
- Establish and maintain disaster recovery and business continuity plans for critical IT infrastructure and systems components.
- Direct and provide support to regularly scheduled audits on HGSC internal IT systems and supporting third-party or customer audits as required to maintain certifications, attestations, and other Information Security compliance-related status attributes for HGSC.
- Conduct internal audits against conformity with NIH and Baylor standards.
- Ensure provision of Information Security support for annual compliance audits, attestations, and certification programs as applicable to HGSC IT infrastructure and systems.
- Provide regular status updates to senior management and other stakeholders on the performance and status of the IT infrastructure and systems.
- Manage audits on behalf of HGSC, act as the point of contact for all IT Security Compliance audit certification-related inquiries.
- Direct the Corrective and Preventive Actions (CAPA) coordination process to ensure both regulatory issues and compliance-related information security issues identified are resolved and closed in a timely manner delivering a sustainable solution.
- Engage with and direct activities of third-party specialist service providers where necessary to support Information Security Compliance-related activities.
- Report regularly to the Department Chair on the status of all Compliance-related activities including compliance processes metrics, issues, and remediation actions.
- Bachelor's degree. Four years of relevant experience may substitute for degree requirement.
- Six years of relevant experience.
Preferred Qualifications and Skills
- Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Ethical Hacker (CEH)
- Proven experience in IT security management, including risk assessment, incident response, and security infrastructure management.
- In-depth knowledge of security frameworks, standards, and best practices (e.g., ISO 27001/27002, NIST Cybersecurity Framework).
- Strong understanding of network security, firewalls, intrusion detection/prevention systems, data encryption, and access control mechanisms.
- Familiarity with regulatory requirements, data privacy laws, and industry-specific compliance frameworks (e.g., HIPAA).
- Experience with security incident management and incident response planning.
- Excellent leadership and team management skills, with the ability to communicate effectively with technical and non-technical stakeholders.
- Strong analytical and problem-solving skills, with the ability to assess risks and develop appropriate mitigation strategies.
- Up-to-date knowledge of emerging security threats, technologies, and industry trends.
Baylor College of Medicine requires employees to be fully vaccinated -subject to approved exemptions-against vaccine-preventable diseases including, but not limited to, COVID-19 and influenza.
Baylor College of Medicine is an Equal Opportunity/Affirmative Action/Equal Access Employer.