Enable job alerts via email!
Senior Security Officer-Remote
Vee Healthtek
United States
Remote
USD 90,000 - 150,000
Full time
12 days ago
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Create a job specific, tailored resume for higher success rate.
Job summary
Join a forward-thinking company as a Senior Security Officer, where you will lead global security governance and compliance efforts. In this pivotal role, you will manage an international team, ensuring alignment with business objectives while enhancing resilience against cyber threats. You will oversee the Information Security Management System, fostering a culture of security across the organization. Collaborate with various teams to implement robust security measures and protect the company's reputation. This is an exciting opportunity to make a significant impact in a dynamic environment focused on innovation and excellence.
Benefits
Health Insurance
401(k) Plan
Flexible Work Hours
Professional Development
Remote Work Options
Paid Time Off
Wellness Programs
Qualifications
- 7-10 years of progressive IT experience with a focus on cybersecurity.
- Experience managing cybersecurity teams and programs.
Responsibilities
- Lead an international team for cybersecurity compliance and governance.
- Manage cybersecurity budget and ensure financial targets are met.
Skills
Cybersecurity Management
Risk Management
Compliance (HIPAA)
Incident Response
Team Leadership
Budget Management
Education
Bachelor's Degree in Computer Science
Master’s Degree in Cybersecurity
Tools
Cybersecurity Auditing Tools
Risk Assessment Tools
Job description
As Vee Healthtek’s (VHT) Senior Security Officer, you will report to the Chief Executive Officer (CEO) and lead the global security governance and compliance program. This role is solely responsible for aligning all cybersecurity efforts with business objectives. You will also lead efforts to comply with all applicable legal and regulatory requirements (both international and Federal), contractual obligations, and expectations of interested parties.
You are also responsible for managing an international team of security professionals while enhancing VHT’s resilience to cyber threats by leading the enterprise-wide risk management program, influencing business operations to develop robust and recoverable systems, and serving as the senior advisor to the incident response process.
Your primary efforts are to oversee the enterprise-wide Information Security Management System (ISMS), incorporating all administrative, physical, and technical safeguards required by the Health Insurance Portability and Accountability Act (HIPAA), as amended, client requirements, and other interested party requirements. This includes fostering a culture of security both within and outside the organization. To do this, you will optimize the allocation of corporate resources to meet both the business needs while simultaneously continuously improving the security posture.
You will collaborate with Executive Leadership, Business Operations, Contracting, Human Resources, Information Technology, Compliance, and Legal teams.
Responsibilities
Promote a culture of cybersecurity awareness
Assess, monitor, and proactively mitigate known and emerging Cybersecurity Risks
Identify, manage, and remediate security incidents
Establish escalation and reporting mechanisms to Executive Leadership
Preferred/Required Certifications and Education
You are also responsible for managing an international team of security professionals while enhancing VHT’s resilience to cyber threats by leading the enterprise-wide risk management program, influencing business operations to develop robust and recoverable systems, and serving as the senior advisor to the incident response process.
Your primary efforts are to oversee the enterprise-wide Information Security Management System (ISMS), incorporating all administrative, physical, and technical safeguards required by the Health Insurance Portability and Accountability Act (HIPAA), as amended, client requirements, and other interested party requirements. This includes fostering a culture of security both within and outside the organization. To do this, you will optimize the allocation of corporate resources to meet both the business needs while simultaneously continuously improving the security posture.
You will collaborate with Executive Leadership, Business Operations, Contracting, Human Resources, Information Technology, Compliance, and Legal teams.
Responsibilities
- Manage an international team of cybersecurity professionals supporting the security and cyber compliance program
- Understand the legal, regulatory, and contractual obligations of each Business Line’s portfolio & services, client landscape, and assets managed by Businesses
- Identify and implement Cybersecurity single point of contacts throughout the organization
- Develop the company’s cybersecurity budget and propose business financial cases to present for the annual budgeting process
- Responsibly, manage the company’s cybersecurity budget by meeting financial targets
- Act as a Cybersecurity consultant to the Company and its affiliates
- Ensure coordination and alignment with information security counterparts who support Vee Healthtek’s clients
- Protect VHT’s interest by identifying operational, budget, and cyber risks introduced through any merger and acquisition activities
- Protect Vee Healthtek’s reputation by establishing a security framework that meets potential client expectations during the contracting negotiation process
- Serve as the organizational subject-matter expert on cybersecurity
- Ensure alignment with Vee Healthtek’s Ethics and Compliance Program (e.g., incident management, escalation, procedure development, communication, education, etc.)
- Conduct and support program gap analyses and implement controls to address gaps
- Manage (or monitor) the Cybersecurity audits and risk assessments requested by Customers/Clients
- In collaboration with organizational leaders, make recommendations for appropriate remediation and monitor status of plan completion
- Define and monitor cybersecurity KPIs for the Company
- In collaboration with Human Resources and Compliance, develop and maintain appropriate security protocols and relevant disciplinary actions (e.g., onboarding and off-boarding protocols, initial and refresher training, etc.)
- Develop secure software development principles for the technology team and ensure its compliance
- Ensure consistency of practice across all company locations, both on- and off-shore
Promote a culture of cybersecurity awareness
- In coordination with Human Resource and Compliance, define and establish a Cybersecurity training program for relevant resources and employees based on policies and guidelines
- Promote a culture of security integration and responsibility throughout the organization
- Ensure that each of the business teams responsible for their work receive adequate training to keep data security in the forefront of their minds. This includes providing both general and role-based training where warranted.
Assess, monitor, and proactively mitigate known and emerging Cybersecurity Risks
- Lead risk assessments for Company applications, digital services, infrastructure, and business delivery
- Stay abreast of the latest security technologies, trends, and threats to assist in management of the company’s protection model
- Maintain a dynamic threat assessment report based on Industry threats, trends, infrastructure, applications, critical services, and regulatory requirements
- Actively monitor the Company environment for potential threats and enact
- appropriate mitigation measures
- Design, build and integrate relevant Cybersecurity solutions and processes to protect the Company and our clients
- Establish cybersecurity maturity model targets and programs to assist the company in reaching a level of maturity and protection commensurate with the business and industry.
- Develop and implement a Data Loss Prevention Program to protect the Company’s Intellectual Property and client information.
- Identify, produce and implement software tools and technologies that will prevent data security threats to the company for internal and external forces.
Identify, manage, and remediate security incidents
- In coordination with the Compliance team, serve as an escalation point for Company security incidents
- Act as a Liaison with applicable state and federal agencies during security incidents
- Establish a Cybersecurity Incident Response Program for appropriate management of security incidents.
- In coordination with the Privacy Officer, ensure appropriate monitoring of physical security controls.
- Lead remediation activities for security incidents.
- Perform Root Cause Analyses for incidents, including short and long-term mitigation actions to prevent recurrences.
- Represent the organization during the security-related crisis communication process.
- Identify external forensic services for use as required for security incident investigations.
Establish escalation and reporting mechanisms to Executive Leadership
- Function as the cybersecurity risk owner as part of the organization’s enterprise risk management process
- Escalate significant security incidents to senior leadership.
- Function as a liaison between Company executives and the business organization for all security initiatives or concerns.
Preferred/Required Certifications and Education
- Bachelor's Degree in Computer Science/Engineering/Cybersecurity, Digital Forensics or related field. Master’s Degree preferred.7-10 years of progressive IT experience and demonstrated experience in cybersecurity specifically
- Required: Certified Information System Security Professional (CISSP)
- Preferred: Certified Information Systems Auditor (CISA); Certified Information Security Manager (CISM); ISO / IEC 27001 Lead Implementer or Auditor
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Similar jobs
Sr. Program Manager, Safety & In Ride Experience
HopSkipDrive
Remote
USD 95,000 - 115,000
6 days ago
Be an early applicant
Information Systems Security Officer (ISSO)
Seneca Holdings
Buffalo
Remote
USD 140,000 - 160,000
Yesterday
Be an early applicant
Chief Information Security Officer - Remote Opportunity
Surgery Partners, Inc.
Nashville
Remote
USD 130,000 - 190,000
5 days ago
Be an early applicant
Business Information Security Officer
Coinbase
On-site
USD 80,000 - 100,000
Yesterday
Be an early applicant
Land a better
job faster
job faster
