Senior Manager, IT

About The Position

Requirements

• 6+ years of progressive IT experience with at least 2 years in a leadership or management role
• Deep expertise in information security, including incident response, vulnerability management, and security architecture
• Demonstrated experience with HIPAA compliance in a healthcare or healthcare technology environment
• Hands-on experience with MDM solutions (JumpCloud preferred), identity providers, and endpoint protection platforms
• Strong understanding of cloud security (AWS preferred), network security, and modern threat landscape
• Experience building and leading IT teams, including hiring and developing talent
• Excellent written and verbal communication skills, with the ability to present to executive and board audiences

Nice To Haves

• CISSP, CISM, or equivalent security certification
• Experience building IT/security functions from the ground up at a growth-stage company
• Familiarity with GDPR compliance (Adoreal has achieved GDPR compliance)
• Experience with security monitoring tools such as Datadog, CloudWatch, and Cloudflare
• Background in healthcare technology or regulated industries

Responsibilities

• Own and execute the organization’s security strategy, including incident response, vulnerability management, and threat detection
• Lead HIPAA compliance initiatives by conducting risk assessments and implementing required security controls
• Develop and maintain security policies, procedures, and documentation, including the Security Incident Response Plan
• Conduct breach risk assessments and manage notification procedures in compliance with HIPAA requirements
• Maintain the Security Incident Register and ensure proper documentation of all security events
• Oversee IT infrastructure including MDM, identity management, endpoint protection, and network security
• Manage the transition from BYOD to company-owned devices, implementing secure device lifecycle management
• Implement and manage SSO, MFA, and privileged access management across the organization
• Ensure business continuity through disaster recovery planning and regular testing
• Develop and enforce contractor security policies and vendor security assessment frameworks
• Manage vendor relationships for security tools, MDM platforms, and IT services
• Conduct Business Associate Agreement reviews and ensure vendor HIPAA compliance
• Hire, mentor, and manage the IT Systems Administrator and IT Security Administrator
• Report on security posture, incidents, and compliance status to executive leadership and the board
• Lead security awareness training programs for all employees
• Coordinate with engineering leadership on secure development practices and DevSecOps integration

Benefits

• Healthcare coverage for you and your family
• Paid time off (PTO) and paid holidays
• Performance-based bonuses and company equity opportunities
• Fully remote work environment with flexible schedules
• Collaborative and thriving team culture guided by Adoreal’s core values