About us:

We are a global leader of pharmacy-driven patient engagement solutions that provide individualized patient experiences to simplify the patient medication journey.

About the Job

The Director of Information Security oversees efforts to uphold confidentiality, integrity, and availability of information systems. They are responsible for prioritizing information security awareness, vulnerability avoidance, threat protection/detection, incident response, breach recovery, and business continuity.

Role Responsibilities

• Maintains a comprehensive understanding of potential threats to information system confidentiality, integrity, and availability.

• Owns information processing system administration tasks related to authentication, authorization, threat detection/protection, breach response, recovery, and business continuity.

• Drives the classification of data and systems (public, private, confidential, compliance confidential) across company assets.

• Participates in threat modeling, including assessing likelihood/frequency, impact, risk reduction, recovery, and associated costs.

• Reviews, updates, and approves company policies and standard operating procedures related to information security.

• Participates in Change Approval Board (CAB) meetings, providing input on changes with information security implications.

• Recommends, drives, and tracks information security awareness training initiatives.

• Ensures the implementation of appropriate security software solutions for intrusion prevention/detection, data loss protection, anti-virus, phishing (email), network scanning, software vulnerability scanning, static code analysis, and security information and event management (SIEM).

• Reviews system and security software logs for signs of anomalous behavior.

• Tracks results from static code analysis and application scanning tools, prioritizing vulnerability remediation with development team leaders.

• Tracks results from network penetration testing, prioritizing vulnerability remediation with operations team leaders.

• Serves as the primary point of contact for suspected or actual security events.

Qualifications & Experience

• Degree in a related field or equivalent experience.

• Industry training/experience in information security management and administration.

• Demonstrable experience in the following:

• Encryption (symmetric and asymmetric)

• Authorization

• Authentication (local, centralized, federated)

• Principle of least privilege

• Data/system classification

• Database security

• Public key infrastructure

• x.509 certificates and certificate management

• Networking

• Operating system administration

• Physical security

• Data/device cleaning, purging, and destruction

• Google Cloud Platform (GCP) Security and Best Practices.

• Awareness of data privacy compliance regulations including HIPAA, HITECH, PCI/DSS, and GDPR.
  

Company Values

• Operate with Integrity. Do what’s right, even when no one is watching.

• Innovate with Passion. Believe in the power of innovation to create positive change.

• Seek to Solve. Tackle challenges head-on.

• Commit to Continuous Improvement. Challenge ourselves to be better every day.

• Leverage Collective Strengths. Work as a team to foster open and transparent communication.

What you’ll get:

• Unlimited Flexible Vacation Plan

• Work where you are most productive – at home or in our offices

• Comprehensive medical, dental, and vision coverage

• 401(k) with company match

• HSA/FSA
• Life, AD&D, long-term disability, and short-term disability insurance

We value equality and equity

At MedAdvisor Solutions, we don’t just accept difference – we leverage it as collective strength. Our goal is to be a diverse workforce that is representative, at all job levels, of the customers we serve.

MedAdvisor Solutions is an equal opportunity employer. Applicants will not be discriminated against because of race, color, national origin, age, gender identity, gender expression, sexual orientation, genetic information (including characteristics and testing), marital status, pregnancy (including childbirth and related medical conditions), physical and mental disability, religion, military and veteran status, and any other characteristic protected by applicable law. Diversity and inclusion among our team are integral to our success and we support a workplace where associates excel based on personal merit, qualifications, experience, ability, and job performance.

We will provide accommodations during the recruitment process upon request. Information received relating to accommodation will be addressed confidentially. If you need accommodation, please contact Peopleandculture@MedAdvisorSolutions.com

We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates, so please don’t hesitate to apply – we’d love to hear from you.