Director, Security Engineering

About The Position

Requirements

• Experience in hardening cloud architectures
• Hands on experience with automated infrastructure configuration management
• Experience in meeting security certification requirements (HIPAA, SOC, etc)
• Possessing both technical and security skills; must hold CISSP or multiple security certifications
• Must have 3 or more years of previous experience with implementing or managing a security program
• Must have 3 or more years of previous experience leading & managing security audit and assessment activities
• Understanding of Public Sector InfoSec standards and FedRAMP

Responsibilities

• Set the strategy for security across a broad range of cloud infrastructure
• Own and manage security operations, programs (e.g., policies and procedures) and strategy
• Drive security compliance through development of a culture of security
• Supporting company-wide audits; Lead security audit and assessment activities
• Develop best in class processes to identify, assess, and remediate security threats of any sort
• Establish remediation of recurring security audits and exercises
• Manage third party platform and vendor relationships
• Evolve security best practices through every facet of the company from its SSDLC to endpoint and employee behavior
• Assist in architectural designs and decisions
• Partner with senior leadership and other internal stakeholders across the organization to mature HealthVerity’s implementation of enterprise information security and risk management
• Work directly with business groups to facilitate risk assessment and risk management processes, and with your team to continue maturing our adoption and implementation of best security practices
• Represent the company on topics of security of any sort
• Evolve and contribute to broader risk management around topics like business continuity and disaster recovery

Benefits

• competitive base salary & annual bonus opportunity (for non-commissioned roles)
• We offer a 401(k) plan and stock options.
• Health, dental, and vision coverage start on day 1, while 401(k) eligibility and stock options follow soon after.
• Remote workdays and 3 days a week of in-office collaboration for team members in the Philadelphia area.
• Take time off as needed, targeted at 4 weeks per year, including vacation, personal and sick time, plus paid parental leave.
• 12 weeks paid leave for childbearing, surrogacy, and adoption; 6 weeks for non-childbearing parents.
• mentorship program, departmental talks, and a library of resources are available beginning day 1 for each new team member to minimize the stress of starting a new job
• biweekly 1:1s, hands-on leadership that is goal-and growth-oriented for each team member, and an annual budget to support professional development pursuits