Director of Information Security

Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience) 5+ years of experience in information security, infrastructure security, or a related role Prior experience in a SaaS or healthcare technology environment Demonstrated experience leading SOC 2 Type II audits and ensuring HIPAA compliance Strong understanding of AWS cloud security, identity and access management, and data protection Hands-on experience with endpoint management, laptop hardening, and mobile device management (MDM) tools Strong troubleshooting, analytical, and problem-solving skills Excellent communication skills

Develop and execute information security strategy Maintain and evolve SOC 2 Type II compliance Ensure HIPAA compliance Establish security policies and procedures Manage third-party risk Lead incident response program Oversee vulnerability management and penetration testing Secure cloud environments (AWS/Azure) and CI/CD pipelines Integrate secure development lifecycle practices Harden employee laptops and mobile devices Manage mobile device management (MDM) platform Support secure onboarding/offboarding and access management Develop and lead security awareness training programs