EnableComp, LLC
  • Information Technology
  • Franklin, TN, USA
  • Full Time

Comprehensive Benefits package including 401k!

Our Mission

We partner with healthcare providers to maximize reimbursement from complex claims payers by having the best people, processes, products and performance.

Our Vision

We enable healthcare providers to do what they do best.

Position Summary

The Manager, Information Security and Compliance will manage a team that is responsible for the information security function, including but not limited to information technology security controls and architecture, information privacy, incident response, disaster recovery business continuity, regulatory compliance, communication, and training for information security program at EnableComp

Key Responsibilities

  • Establish, administer and audit EnableComp's Information Security & Compliance Program to maintain alignment with information security best practices and company, regulatory, and customer requirements as they regard safeguarding the confidentiality, availability, and integrity of mission critical, private health information, and other forms of personal or confidential data.
  • Identifies security architecture, goals, objectives, and metrics; analyzes business needs and priorities for the security of critical systems.
  • Communicates effectively with Development and DevOps teams to drive the implementing and refining of SDLC requirements, capabilities, and limitations pertinent to delivering highly resilient applications with reliable and secure deployment practices that meet compliance requirements.
  • Manage security program and assurances, e.g. Security training and awareness, threats, vulnerabilities management, phishing, incident response, logging, external/internal pen-testing efforts.
  • Evaluates potential business impacts from security incidents and provides guidance to business decision-makers on remediation efforts.
  • Ensure security compliance audits and regulatory requirements are met across the organization
  • Lead the liaising with external auditors and customers to help answer questionnaires with regards to EnableComp's security compliance program and vendor management activities.
  • Build and maintain key security KPI's and compliance dashboards to provide a comprehensive view of the security and compliance posture of the organization.
  • Manage and maintain current SOC2 compliance and lead new certification efforts towards relevant security frameworks (e.g HITRUST)
  • Organize and refresh organizational policy and procedures to align with future compliance frameworks (HISTRUST - CSF).
  • Maintain working knowledge of evolving data privacy laws, standards, guidelines, and regulations that are relevant to operations.
  • Maintain information security playbooks, develop, and produce metrics around information security processes and procedures
  • Lead and evaluate IS risk and mitigation efforts including but not limited to, corporate risk assessments, risk metric tracking, BCDR, tabletop exercises, and vulnerability management.

Requirements and Qualifications

  • Bachelor's degree required.
  • 5 +years' work experience in IT Security, Compliance, Incident Response, and auditing standards (SOC2, HITRUST)
  • Expierience with cloud platforms, including DevSecOps concepts and best practices for building secure and performant cloud infrastructure environments. (AWS, Azure, etc)
  • Familiarity with Cyber Security trends and hacking/exploitation techniques.
  • Knowledge of security best practices across multi-vendor platforms and relevant data privacy laws, standards, guidelines, and regulations
  • Proven track record of establishing and enforcing appropriate, risk-based security practices within a highly regulated environment
  • Excellent communication skills utilized to collaborate both within IT and across all functions of the company to drive IT initiatives.
  • Experience in writing technology focused policy and procedural documentation.
  • A highly technical, hands-on effective people manager with experience directly leading teams.
  • Other duties as required.

Special Considerations and Prerequisites

  • Practices and adheres to EnableComp's Core Values, Vision and Mission.
  • Ability to prioritize and manage multiple competing priorities and projects concurrently.
  • Ability to mentor and coach employees.
  • Ability to work under pressure and adequately manage stress.
  • Timely and regular attendance.
  • Proven written and verbal communication skills.
  • Strong analytical and problem-solving skills.

EnableComp, LLC
  • Apply Now

  • * Fields Are Required

    What is your full name?

    How can we contact you?

  • Sign Up For Job Alerts!

  • Follow Jobs:
  • Follow Our Jobs On Facebook
  • Share This Page