Senior Manager Of It Security Operations And Engineering

Do you wake up every morning inspired to solve problems and make a meaningful impact in healthcare? If so, we want to hear from you.
At Innovista Health, we're leading the effort to drive transformative change in healthcare. We are a full-service value-based care and managed service organization that partners with independent providers to help them navigate, succeed, and thrive in value-based care.
Founded in 2013, Innovista Health offers solutions for providers at every point along the continuum of value-based care, ranging from care management, provider/ACO enablement, and quality improvement to performance insights, reporting, and managed administrative/payment services.
While Innovista Health's main offices are in Oak Brook, IL and Houston, TX, we have remote employees throughout the US.
This hybrid role, a blend of remote and onsite work, offers the chance to be part of our exciting journey towards a better, more efficient healthcare system. If you're based in the Oak Brook area, we'd love to hear from you!
JOB SUMMARY
The Senior Manager ofIT Security Operations and Engineering in the healthcare sector oversees the development, implementation, and management of security strategies tailored to safeguarding healthcare data, systems, and infrastructure. This pivotal role involves leading a team responsible for maintaining HIPAA compliance, mitigating cybersecurity risks, and ensuring the confidentiality, integrity, and availability of sensitive patient information.
DUTIES AND RESPONSIBILITIES
Leadership and Team Management:

• Lead and manage a team of security engineers, analysts, and operations staff, fostering a culture of compliance and security awareness.
• Provide guidance, set objectives, and conduct performance evaluations, ensuring the team's alignment with healthcare security best practices.

Security Operations Management:

• Develop and oversee Security Operations processes adhering to HIPAA regulations and industry standards.
• Monitor security systems for timely detection, analysis, and response to potential security incidents or breaches involving patient data.
• Collaborate with cross-functional teams to implement and maintain robust security measures within healthcare IT systems.

Engineering and Infrastructure Security:

• Architect, implement, and maintain secure IT infrastructure and systems to protect patient records and healthcare applications.
• Evaluate, deploy, and manage security technologies specifically tailored to healthcare environments, ensuring data privacy and integrity.

Strategy, Compliance, and Governance:

• Develop and execute IT security strategies aligned with HIPAA and other healthcare regulations.
• Ensure compliance with HIPAA, and other pertinent standards while guiding the development of security policies and procedures.
• Coordinate and oversee security audits and assessments to maintain regulatory compliance.

Incident Response and Crisis Management :

• Lead and coordinate incident response efforts in the event of security breaches, ensuring prompt resolution and minimal impact on patient data.
• Develop and regularly test incident response plans to effectively address security incidents in a healthcare context.

Communication and Reporting:

• Provide regular reports to senior management on security posture, incidents, and compliance status.
• Communicate complex security concepts and risks effectively to non-technical stakeholders in the healthcare domain.

Hands-On Experience:

• Proficient experience working directly with a wide range of security technologies, including but not limited to firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM (Security Information and Event Management), endpoint protection, DLP (Data Loss Prevention), encryption, PKI (Public Key Infrastructure), and vulnerability scanning tools.
• Demonstrated proficiency in configuring, deploying, and managing security infrastructure and tools to fortify networks, systems, and applications against potential threats.
• Strong practical knowledge of conducting security assessments, penetration testing, and ethical hacking to identify vulnerabilities and weaknesses in the organization's assets.
• Proven track record of actively managing security incidents, including containment, eradication, and recovery, with an emphasis on applying real-time solutions and mitigation strategies.
• Direct involvement in designing and implementing secure network architectures, including segmentation, DMZs (Demilitarized Zones), and secure access controls.
• Hands-on familiarity with cloud security principles and practices, encompassing secure configuration, identity and access management, and monitoring within cloud environments (e.g., Azure).

Requirements

• Bachelor's degree in computer science, Information Technology, or related field.
• Proven experience 5 years in IT Security Operations, engineering, or related roles, with 2 years in a managerial or leadership position.
• In-depth knowledge of security protocols, cryptography, authentication, and authorization systems.
• Strong understanding of network and system security, vulnerability management, and incident response.
• Certifications such as CISSP, CISM, CISA, or similar are highly desirable.
• Excellent leadership, communication, and interpersonal skills.
• Ability to collaborate effectively with diverse teams and stakeholders.

BENEFITS:
We are committed to creating a culture where everyone feels important, welcomed, and included. We demonstrate this commitment by offering a comprehensive benefits package that fosters opportunities for growth and advancement and supports the physical, mental, and financial wellbeing of our team members.
HEALTH & WELLBEING

• A choice health coverage, including HMO and PPO, plus Flexible Spending Account (FSA) and Health Savings Account (HSA) options
• Dental and vision coverage
• Company-paid benefits (short- and long-term disability, employee life, and accidental death and dismemberment)
• Employee Assistance Program
• Discounts and perks on gym memberships, shopping, travel, recreation, and more

FINANCIAL GROWTH

• A yearly discretionary bonus
• 401(k) with a company match
• Rewarding employee referral bonuses

WORK/LIFE BALANCE

• Generous paid time off policy that increases with tenure
• Nine paid company holidays + three Diversity Days
• Paid Parental Leave (up to 6 weeks, subject to applicable waiting period)
• Potential to work hybrid or remote and/or create a flexible work schedule (role specific)

JOB SATISFACTION & ADVANCEMENT

• Clear career advancement and growth pathways
• Continuous education opportunities
• Diversity, Equity & Inclusion Committee with various Business Resource Groups you can join
• Company-wide socials and gatherings
• "Dress for Your Day" policy
• An open-door policy that encourages direct communication with our CEO and upper management, fostering transparency and inclusivity in our work culture

Benefits may be subjected to an applicable waiting period