Senior Manager, IT & Software Engineering

About The Position

Requirements

• 5+ years of progressive IT development experience with at least 2 years in a leadership or management role
• At least 5 years writing and developing code with C#/.NET Core environments, Kubernetes, or microservices architectures
• Deep expertise in information security, including incident response, vulnerability management, and security architecture
• Demonstrated experience with HIPAA compliance in a healthcare or healthcare technology environment
• Hands-on experience with MDM solutions (JumpCloud preferred), identity providers, and endpoint protection platforms
• Strong understanding of cloud security (AWS preferred), network security, and modern threat landscape
• Experience building and leading IT teams, including hiring and developing talent
• Working knowledge of software engineering practices sufficient to partner effectively with engineering leadership on DevSecOps, secure SDLC, and production system reliability
• Experience with human resources-related tasks including managing time-off requests, performance reviews, and interviewing & hiring
• Excellent written and verbal communication skills, with the ability to present to executive and board audiences
• Enthusiasm for rapid advancement in a dynamic startup environment, with a readiness to invest additional hours to complete tasks effectively

Nice To Haves

• CISSP, CISM, or equivalent security certification
• Experience building IT/security functions from the ground up at a growth-stage company
• Familiarity with GDPR compliance (Adoreal has achieved GDPR compliance)
• Experience with security monitoring tools such as Datadog, CloudWatch, and Cloudflare
• Background in healthcare technology or regulated industries

Responsibilities

• Own and execute the organization’s security strategy, including incident response, vulnerability management, and threat detection
• Lead HIPAA compliance initiatives by conducting risk assessments and implementing required security controls
• Develop and maintain security policies, procedures, and documentation, including the Security Incident Response Plan
• Conduct breach risk assessments and manage notification procedures in compliance with HIPAA requirements
• Maintain the Security Incident Register and ensure proper documentation of all security events
• Oversee IT infrastructure including MDM, identity management, endpoint protection, and network security
• Manage the transition from BYOD to company-owned devices, implementing secure device lifecycle management
• Implement and manage SSO, MFA, and privileged access management across the organization
• Ensure business continuity through disaster recovery planning and regular testing
• Develop and enforce contractor security policies and vendor security assessment frameworks
• Manage vendor relationships for security tools, MDM platforms, and IT services
• Conduct Business Associate Agreement reviews and ensure vendor HIPAA compliance
• Report on security posture, incidents, and compliance status to executive leadership and the board
• Lead security awareness training programs for all employees
• Coordinate with engineering leadership on secure development practices and DevSecOps integration
• Partner on architectural decisions for scalability, security, and performance of healthcare software systems
• Contribute technical guidance on CI/CD standards, quality metrics, and cloud infrastructure where security and engineering intersect
• Provide input on engineering best practices that affect compliance, data protection, and production stability
• Design, develop, enhance, triage, and debug Web APIs using C# and .NET Core

Benefits

• Healthcare coverage for you and your family
• Paid time off (PTO) and paid holidays
• Performance-based bonuses and company equity opportunities
• Fully remote work environment with flexible schedules
• Collaborative and thriving team culture guided by Adoreal’s core values