Logo
HealthEdge

Director, Security Operations

HealthEdge, Salem, Oregon, us, 97308


Overview

Director, Security Operations

Position Overview:

The Director, Security Operations will lead and manage a team responsible for safeguarding the company's healthcare data, infrastructure, and applications. You will build and execute the strategy for the highest standards of incident response, threat detection, vulnerability management, and the monitoring of compliance with industry standards and regulatory requirements such as HIPAA and HITRUST. This role is critical in protecting sensitive healthcare data and ensuring the security of our platforms.

About Center of Excellence:

Centers of Excellence (COE) are teams whose primary goal is to provide expertise in a specific field. COEs will usually provide support through training, research, and skilled leaders. In the case of HealthEdge, our Centers of Excellence incorporate the Human Resources, IT, Legal and Financial fields, all of which provide support to our Product divisions and allows the enterprise to move forward and achieve its goals.

Your Impact:

Leadership and Team Management:

Lead, mentor, and develop a team of security analysts and engineers, fostering a culture of continuous learning and improvement.

Ensure operational readiness of the Security teams, including capabilities assessments, resource allocation, and skills efficacy.

Define and execute the security operations strategy in alignment with the company’s overall cybersecurity goals.

Security Tooling and Automation:

Drive the evaluation, implementation, and management of security tools and technologies that enhance the company’s security posture, including SIEM, EDR, vulnerability management platforms, and more.

Consult with our IT teams to ensure best practices in systems and pipeline management are in place.

Incorporate automation whenever possible.

Monitoring and Threat Intelligence:

Ensure our teams are optimizing best in class advanced monitoring and threat detection systems to identify malicious activities across the network, systems, and applications.

Operationalize threat intelligence and analytics to proactively defend against emerging security threats and vulnerabilities.

Champion and execute processes for continuous monitoring, log management, and correlation of security events to ensure we have comprehensive awareness of threats.

Incident Response:

Lead the development and optimization of incident response processes and playbooks.

Coordinate cross-functional incident response efforts, including root cause analysis, and post-incident reporting.

Vulnerability Management and Risk Mitigation:

Own vulnerability management strategy throughout HealthEdge.

Develop relationships with stakeholders and empower a Shift Left function throughout the business.

Assess and prioritize risk, executing mitigation strategies and driving the implementation of security controls.

Stakeholder Communication and Reporting:

Provide regular updates on the security posture, incidents, and risk landscape to executive leadership and key stakeholders.

Collaborate with internal departments and external vendors to align security efforts with business objectives and customer needs.

Develop key performance indicators (KPIs) and metrics to measure the effectiveness of security operations.

Compliance and Regulatory Adherence:

Ensure compliance with healthcare industry standards and regulations, including HIPAA, HITRUST, and other applicable frameworks.

Collaborate with legal, compliance, and audit teams to support security audits, certifications, and assessments.

Maintain thorough documentation of security policies, procedures, and incident response actions to support regulatory requirements.

What you bring:

7+ years of experience in security operations, with at least 4 years in a leadership role.

Understanding of security frameworks and methodologies, such as NIST, and the CIS Controls.

Hands-on experience with security technologies, including SIEM, EDR, vulnerability management, SASE, and DLP tools.

Proven track record in leading incident response.

Strong problem-solving skills, attention to detail, and the ability to manage multiple tasks and priorities in a fast-paced environment.

Ability to lead and inspire a team of security professionals, fostering collaboration and accountability.

Excellent written and verbal communication skills, with the ability to effectively convey technical concepts to non-technical stakeholders.

Ability to align security operations with broader organizational goals and adapt to evolving threats.

HealthEdge commits to building an environment and culture that supports the diverse representation of our teams. We aspire to have an inclusive workplace. We aspire to be a place where all employees have the opportunity to belong, make an impact and deliver excellent software and services to our customers.

Geographic Responsibility: While HealthEdge is located in Burlington, MA you may live anywhere in the US

Type of Employment: Full-time, permanent

Travel %: 10%

Work Environment: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job:

The employee is occasionally required to move around the office. Specific vision abilities required by this job include close vision, color vision, peripheral vision, depth perception, and ability to adjust focus.

Work across multiple time zones in a hybrid or remote work environment.

Long periods of time sitting and/or standing in front of a computer using video technology.

May require travel dependent on company needs.

The above statements are intended to describe the general nature and level of the job being performed by the individual(s) assigned to this position. They are not intended to be an exhaustive list of all duties, responsibilities, and skills required. HealthEdge reserves the right to modify, add, or remove duties and to assign other duties as necessary. In addition, reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this position in compliance with the Americans with Disabilities Act of 1990. Candidates may be required to go through a pre-employment criminal background check.

HealthEdge is an equal opportunity employer. We are committed to workforce diversity and actively encourage all qualified persons to seek employment with us, including, but not limited to, racial and ethnic minorities, women, veterans and persons with disabilities.

#LI-Remote

Job Locations US-Remote

ID 2024-4940

Category Information Technology

Position Type Full-Time

HealthEdge provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.