Information Security Manager

Healthcare Systems of America

Miami, FL, USA

Published: 6/14/2022

Technology

Full Time

Job Description

WE ARE HEALTHCARE SYSTEMS OF AMERICA. Our mission is to elevate healthcare standards, improve patient outcomes, and create value for communities across the United States. Healthcare Systems of America (HSA) is more than a healthcare provider-we're a community built on excellence, innovation, and compassion. If you're looking for a career that makes a difference, empowers you to grow, and gives you the opportunity to impact lives, HSA is where you belong.

Healthcare Systems of America operates 8 community hospitals across 3 states. We service a multitude of patients and their families across our vast network, while remaining committed to the professional development of our staff, the functional improvement of our patients, and the cultivation of strong partnerships within our communities.

WHAT WE OFFER

Career Growth & Development - We are an essential, stable and growing company with many opportunities for training and advancement within the medical field that all employees and team members can benefit from.
Supportive & Inclusive Culture - We foster an environment where every team member is valued, heard, and empowered to succeed.
Meaningful Work - Every day, you'll contribute to patient care, cutting-edge medical solutions, and life-changing treatment and technologies.

POSITION SUMMARY

The Information Security Manager (ISM) leads and manages HSA Hospitals' security operations team, responsible for both oversight of the contracted SOC provider and conducting internal cybersecurity investigations. This role ensures effective triage, investigation, and resolution of escalated incidents, while proactively identifying, assessing, and remediating security events across Windows-based enterprise environments, including Azure and on-prem systems.

PRIMARY RESPONSIBILITIES

Lead, mentor, and manage the security operations team, including analysts and engineers.
Serve as primary liaison to the third-party SOC provider, overseeing incident escalations.
Oversee triage, investigation, and response to SOC escalations and internally generated security alerts.
Validate escalations and internal findings, determine business impact, and coordinate remediation with IT and application teams.
Drive proactive internal investigations, threat hunting, and security assessments within Microsoft desktop, server, and cloud environments.
Maintain and enhance incident response playbooks and operational processes.
Ensure comprehensive documentation of incidents, investigations, and remediations for compliance and reporting.
Develop and report on operational KPIs, incident trends, and risk posture to the Director.
Interpret and apply HIPAA security requirements and privacy frameworks to security operations and controls.
Participate in on-call rotations as needed.

EXPERIENCE/EDUCATION REQUIREMENTS

Bachelor's degree in Cybersecurity, Information Technology, or related field, or equivalent practical experience and job history in security operations and leadership roles.
7+ years of experience in cybersecurity, with at least 2 years in a leadership or management role overseeing incident response or SOC operations.
Strong knowledge of Microsoft Windows desktop and server environments, Azure cloud services, and hybrid infrastructure security.
Experience working with or overseeing managed SOC service providers and performing internal investigations.
Familiarity with HIPAA, privacy requirements, and applying compliance frameworks to operational security.

CERTIFICATIONS PREFERRED

CISSP, CISM, GCIH, or similar.