Director, Security Engineering at HealthVerity

Please note: This is a hybrid role requiring 3 days in office at our Philadelphia HQ - 1818 Market Street.How you will helpAs the security thought leader for HealthVerity you will assist in developing long term organization-wide strategies and governance developing plans to execute that strategy while overseeing daily activity for your team. Working alongside our engineering and business operations groups your team will be responsible for designing and enforcing security policies and procedures. Security is paramount at HealthVerity and is critical in every business relationship made. Your team will be leveraging state of the art tools and aligning with the highest industry standards to deliver solutions that meet the strict demands of the healthcare data processing industry. Peer review of solutions and implementations is expected as a collaborative environment. You will play an integral part in building the foundation of HealthVeritys future.What you will doSet the strategy for security across a broad range of cloud infrastructureOwn and manage security operations programs (e.g. policies and procedures) and strategyDrive security compliance through development of a culture of securitySupporting company-wide audits; Lead security audit and assessment activitiesDevelop best in class processes to identify assess and remediate security threats of any sortEstablish remediation of recurring security audits and exercisesManage third party platform and vendor relationshipsEvolve security best practices through every facet of the company from its SSDLC to endpoint and employee behaviorAssist in architectural designs and decisionsPartner with senior leadership and other internal stakeholders across the organization to mature HealthVeritys implementation of enterprise information security and risk managementWork directly with business groups to facilitate risk assessment and risk management processes and with your team to continue maturing our adoption and implementation of best security practicesRepresent the company on topics of security of any sortEvolve and contribute to broader risk management around topics like business continuity and disaster recoveryHow success is definedUnderstand security threats at their very core because you have been studying them from all aspectsAbility to distinguish between security processes that check boxes and those that harden systems and operations to threatsYou understand theres never such a thing as perfect security and are constantly improvingYour curiosity about the types of risks the company may face and constantly staying one step ahead of potential threatsBeing data-driven; testing and measuring every stepYou know the relevance of monitoring and measuring systems to identify bottlenecksYou automate everythingKeeping up to date on the latest trends and topics in security technologyYou consider NIST 800-53 and ISO27001 as good starts to securityDesired Skills and ExperienceExperience in hardening cloud architecturesHands on experience with automated infrastructure configuration managementExperience in meeting security certification requirements (HIPAA SOC etc)Possessing both technical and security skills; must hold CISSP or multiple security certificationsMust have 3 or more years of previous experience with implementing or managing a security programMust have 3 or more years of previous experience leading & managing security audit and assessment activitiesUnderstanding of Public Sector InfoSec standards and FedRAMPBase salary for the role is commensurate with experience and can range between $175000 - 250000 annual bonus opportunity.Hiring LocationsOur main office is located in Center City Philadelphia where we operate on a hybrid model with in-office work required three days a week for local employees. We believe collaboration is most effective when teams come together which is why we prioritize hiring in the Philadelphia area.For certain roles we also hire from hub locationsregions where we have an established presence with multiple team members working remotely. While these employees primarily work from home we bring them together in person at lease once a year for team-building collaboration and strategic planning.Due to tax and labor regulations we can only hire from specific states. Remote work is supported in the following key hub locations and approved states:Hub Locations:Philadelphia PennsylvaniaBoston MassachusettsNew York City New YorkBaltimore MarylandWashington D.C.Charlotte North CarolinaRaleigh-Durham North CarolinaAtlanta GeorgiaChicago IllinoisApproved States for Remote Work:CT DE FL GA IL IN MA MD MI NC NJ NY OH PA TN and VA.About HealthVerityHealthVerity is the leader in privacy-protected real-world data exchange transforming how healthcare and life sciences organizations connect and analyze disparate healthcare and consumerdata.We continue to innovate HealthVerityMarketplacethenationsfirst andlargestreal-world dataecosystemcomprising more than 75 leading data providers and over 340 million US patients. Combined with Identity Manager the industrys most accurate and efficient solution for patient identity privacy and governance wesupport critical applications in clinical development commercial strategyregulatory decision-making population healthunderwriting and more. HealthVerity has raisedmore than $140 million to date and works closely with its data providers partners and clients to Synchronize the Science.To learn more about HealthVerity visit.Why youll love working hereWe are making a difference Our technology is at the forefront of some of the biggest healthcare challenges in the world.We are one team Our people define our culture and always will. We take time out to celebrate each other and acknowledge the value that each of us adds towards our greater mission. Come share all you have to offer with our 200-person team.We are learners Every team member is continually learning no matter if weve been in a role for one year or much longer. We are committed to learning and implementing what is best for our clients partners and each other.Benefits & PerksOur benefits package is thoughtfully designed to support and enrich the experience of our full-time employees with eligibility limited to those in permanent positions.Compensation: competitive base salary & annual bonus opportunity (for non-commissioned roles)Benefits: We offer a 401(k) plan and stock options. Health dental and vision coverage start on day 1 while 401(k) eligibility and stock options follow soon after.Flexible location: Remote workdays and 3 days a week of in-office collaboration for team members in the Philadelphia area. Check location requirements with the recruiting team.Generous PTO: Take time off as needed targeted at 4 weeks per year including vacation personal and sick time plus paid parental leave.Parental Leave: 12 weeks paid leave for childbearing surrogacy and adoption; 6 weeks for non-childbearing parents.Comprehensive and individualized onboarding: mentorship program departmental talks and a library of resources are available beginning day 1 for each new team member to minimize the stress of starting a new jobProfessional development: biweekly 1:1s hands-on leadership that is goal-and growth-oriented for each team member and an annual budget to support professional development pursuitsWe believe incorporating different ideas perspectives and backgrounds make us stronger and encourages an environment where ageism racism sexism ableism homophobia transphobia or any other form of discrimination are not tolerated. All qualified job applicants will be given consideration for employment without regard to race color religion sex sexual orientation gender identity national origin protected veteran status or on the basis of disability. At HealthVerity were working towards an innovative and connected future for healthcare data and believe the future is better together. We can only do that if everyone has a seat at the table.If you require a reasonable accommodation in completing this application interviewing completing any pre-employment testing or otherwise participating in the employee selection process please direct your inquiries to Remote opportunities are not available in all areas and require team members to work from a fixed location due to tax and labor law implications - specific questions about remote positions can be discussed during the interview process with your recruiter.Required Experience:Director Key Skills Go,Lean,Management Experience,React,Node.js,Operations Management,Project Management,Research & Development,Software Development,Team Management,GraphQL,Leadership Experience Employment Type : Full Time Experience: years Vacancy: 1 Monthly Salary Salary: 175000 - 250000