HealthEdge Software Inc
Director, Security Operations
HealthEdge Software Inc, Boston, Massachusetts, us, 02298
OverviewDirector, Security OperationsPosition Overview:The Director, Security Operations will lead and manage a team responsible for safeguarding the company's healthcare data, infrastructure, and applications. You will build and execute the strategy for the highest standards of incident response, threat detection, vulnerability management, and the monitoring of compliance with industry standards and regulatory requirements such as HIPAA and HITRUST. This role is critical in protecting sensitive healthcare data and ensuring the security of our platforms.Your Impact:Leadership and Team Management:
Lead, mentor, and develop a team of security analysts and engineers, fostering a culture of continuous learning and improvement.Ensure operational readiness of the Security teams, including capabilities assessments, resource allocation, and skills efficacy.Define and execute the security operations strategy in alignment with the company's overall cybersecurity goals.Security Tooling and Automation:Drive the evaluation, implementation, and management of security tools and technologies that enhance the company's security posture, including SIEM, EDR, vulnerability management platforms, and more.Consult with our IT teams to ensure best practices in systems and pipeline management are in place.Incorporate automation whenever possible.Monitoring and Threat Intelligence:Ensure our teams are optimizing best in class advanced monitoring and threat detection systems to identify malicious activities across the network, systems, and applications.Operationalize threat intelligence and analytics to proactively defend against emerging security threats and vulnerabilities.Champion and execute processes for continuous monitoring, log management, and correlation of security events to ensure we have comprehensive awareness of threats.Incident Response:Lead the development and optimization of incident response processes and playbooks.Coordinate cross-functional incident response efforts, including root cause analysis, and post-incident reporting.Vulnerability Management and Risk Mitigation:Own vulnerability management strategy throughout HealthEdge.Develop relationships with stakeholders and empower a Shift Left function throughout the business.Assess and prioritize risk, executing mitigation strategies and driving the implementation of security controls.Stakeholder Communication and Reporting:Provide regular updates on the security posture, incidents, and risk landscape to executive leadership and key stakeholders.Collaborate with internal departments and external vendors to align security efforts with business objectives and customer needs.Develop key performance indicators (KPIs) and metrics to measure the effectiveness of security operations.Compliance and Regulatory Adherence:Ensure compliance with healthcare industry standards and regulations, including HIPAA, HITRUST, and other applicable frameworks.Collaborate with legal, compliance, and audit teams to support security audits, certifications, and assessments.Maintain thorough documentation of security policies, procedures, and incident response actions to support regulatory requirements.What you bring:7+ years of experience in security operations, with at least 4 years in a leadership role.Understanding of security frameworks and methodologies, such as NIST, and the CIS Controls.Hands-on experience with security technologies, including SIEM, EDR, vulnerability management, SASE, and DLP tools.Proven track record in leading incident response.Strong problem-solving skills, attention to detail, and the ability to manage multiple tasks and priorities in a fast-paced environment.Ability to lead and inspire a team of security professionals, fostering collaboration and accountability.Excellent written and verbal communication skills, with the ability to effectively convey technical concepts to non-technical stakeholders.Ability to align security operations with broader organizational goals and adapt to evolving threats.Geographic Responsibility:
While HealthEdge is located in Burlington, MA you may live anywhere in the US.Type of Employment:
Full-time, permanentTravel %:
10%Work Environment:The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job:The employee is occasionally required to move around the office.Specific vision abilities required by this job include close vision, color vision, peripheral vision, depth perception, and ability to adjust focus.Work across multiple time zones in a hybrid or remote work environment.Long periods of time sitting and/or standing in front of a computer using video technology.May require travel dependent on company needs.HealthEdge is an equal opportunity employer.
We are committed to workforce diversity and actively encourage all qualified persons to seek employment with us, including, but not limited to, racial and ethnic minorities, women, veterans and persons with disabilities.#J-18808-Ljbffr
Lead, mentor, and develop a team of security analysts and engineers, fostering a culture of continuous learning and improvement.Ensure operational readiness of the Security teams, including capabilities assessments, resource allocation, and skills efficacy.Define and execute the security operations strategy in alignment with the company's overall cybersecurity goals.Security Tooling and Automation:Drive the evaluation, implementation, and management of security tools and technologies that enhance the company's security posture, including SIEM, EDR, vulnerability management platforms, and more.Consult with our IT teams to ensure best practices in systems and pipeline management are in place.Incorporate automation whenever possible.Monitoring and Threat Intelligence:Ensure our teams are optimizing best in class advanced monitoring and threat detection systems to identify malicious activities across the network, systems, and applications.Operationalize threat intelligence and analytics to proactively defend against emerging security threats and vulnerabilities.Champion and execute processes for continuous monitoring, log management, and correlation of security events to ensure we have comprehensive awareness of threats.Incident Response:Lead the development and optimization of incident response processes and playbooks.Coordinate cross-functional incident response efforts, including root cause analysis, and post-incident reporting.Vulnerability Management and Risk Mitigation:Own vulnerability management strategy throughout HealthEdge.Develop relationships with stakeholders and empower a Shift Left function throughout the business.Assess and prioritize risk, executing mitigation strategies and driving the implementation of security controls.Stakeholder Communication and Reporting:Provide regular updates on the security posture, incidents, and risk landscape to executive leadership and key stakeholders.Collaborate with internal departments and external vendors to align security efforts with business objectives and customer needs.Develop key performance indicators (KPIs) and metrics to measure the effectiveness of security operations.Compliance and Regulatory Adherence:Ensure compliance with healthcare industry standards and regulations, including HIPAA, HITRUST, and other applicable frameworks.Collaborate with legal, compliance, and audit teams to support security audits, certifications, and assessments.Maintain thorough documentation of security policies, procedures, and incident response actions to support regulatory requirements.What you bring:7+ years of experience in security operations, with at least 4 years in a leadership role.Understanding of security frameworks and methodologies, such as NIST, and the CIS Controls.Hands-on experience with security technologies, including SIEM, EDR, vulnerability management, SASE, and DLP tools.Proven track record in leading incident response.Strong problem-solving skills, attention to detail, and the ability to manage multiple tasks and priorities in a fast-paced environment.Ability to lead and inspire a team of security professionals, fostering collaboration and accountability.Excellent written and verbal communication skills, with the ability to effectively convey technical concepts to non-technical stakeholders.Ability to align security operations with broader organizational goals and adapt to evolving threats.Geographic Responsibility:
While HealthEdge is located in Burlington, MA you may live anywhere in the US.Type of Employment:
Full-time, permanentTravel %:
10%Work Environment:The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job:The employee is occasionally required to move around the office.Specific vision abilities required by this job include close vision, color vision, peripheral vision, depth perception, and ability to adjust focus.Work across multiple time zones in a hybrid or remote work environment.Long periods of time sitting and/or standing in front of a computer using video technology.May require travel dependent on company needs.HealthEdge is an equal opportunity employer.
We are committed to workforce diversity and actively encourage all qualified persons to seek employment with us, including, but not limited to, racial and ethnic minorities, women, veterans and persons with disabilities.#J-18808-Ljbffr