IT Security Manager (49427)

Platinum Dermatology Partners LLC•Dallas, TX

About The Position

The IT Security Manager is a working leader responsible for directly operating, configuring, and securing the organization’s cybersecurity infrastructure across a multi-site healthcare environment. This role is hands-on and execution focused, owning day to day security operations while building a scalable security program. The ideal candidate has strong technical depth in XDR, MDR, SOC operations, SIEM administration, endpoint security, cloud security, and AI-enabled security tools. This individual will actively configure systems, investigate alerts, respond to incidents, and drive remediation efforts, not simply oversee them.

Requirements

Bachelor’s degree in Information Security, Cybersecurity, Information Systems, or related field
5–10 years of hands-on cybersecurity experience
3+ years in healthcare or highly regulated industry required
Direct experience operating SIEM platforms (e.g., Splunk, Microsoft Sentinel)
Hands-on experience with XDR/MDR platforms (e.g., CrowdStrike, Sentinel One, Microsoft Defender)
Experience managing SOC workflows and alert triage
Experience securing cloud environments (Azure, AWS, Microsoft 365)
Strong understanding of HIPAA compliance requirements
SIEM configuration and log ingestion management
XDR / MDR implementation and optimization
SOC ticketing workflows and escalation procedures
Vulnerability management tools (Tenable, Rapid7, Qualys)
Email security and phishing detection
IAM, SSO, MFA, and privileged access management
Endpoint hardening and patch governance
AI risk monitoring and governance controls
CISSP, CISM, CISA, CCSP, Security+, CRISC, CPHIMS, CHPS
Excellent customer service and communication skills, with a patient, professional, and empathetic approach.
Ability to prioritize tasks and manage time effectively in a busy environment.
Strong problem-solving abilities and keen attention to detail.

Responsibilities

Act as primary owner of SIEM, XDR, and MDR platforms
Monitor and tune alerting thresholds to reduce noise and improve detection accuracy
Investigate security alerts, perform root cause analysis, and lead incident responses
Conduct threat hunting using MITRE ATT&CK framework methodologies
Manage endpoint detection and response (EDR) tools across all locations
Maintain vulnerability scanning programs and coordinate patch remediation
Lead real-time incident triage and containment activities
Develop and maintain incident response playbooks
Coordinate forensic investigations and external cybersecurity partners when required
Document all incidents and produce executive summaries
Evaluate and secure AI tools used in clinical, revenue cycle, and operational workflows
Assess data leakage risks associated with generative AI platforms
Implement monitoring controls for AI-driven automation systems
Participate in AI governance initiatives and enforce approved AI usage policies
Manage identity and access management (IAM), MFA enforcement, and privileged access controls
Implement and maintain Zero Trust architecture principles
Oversee firewall rules, email security, and endpoint hardening
Secure Microsoft 365, Azure, AWS, or other cloud environments
Conduct periodic access reviews and audit log monitoring
Maintain HIPAA Security Rule safeguards (Administrative, Physical, Technical)
Support internal and external audits
Conduct periodic security risk assessments
Manage Business Associate Agreement (BAA) security reviews
Implement security automation workflows
Improve mean time to detect (MTTD) and mean time to respond (MTTR)
Run phishing simulations and security awareness campaigns
Develop metrics dashboards for executive reporting