We’re Personify Health. We’re the first and only personalized health platform company to bring health, wellbeing, and navigation solutions together. Helping businesses optimize investments in their members while empowering people to meaningfully engage with their health. At Personify Health, we believe in offering total rewards, flexible opportunities, and a diverse inclusive community, where every voice matters. Together, we’re shaping a healthier, more engaged future.
Responsibilities
Who are you?
As Senior Manager, Information security for the industry leading employee wellbeing and engagement platform, you will lead the team responsible for ongoing prevention, detection, and response to cyber threats across all of the company's systems.
In this role you will wear many hats, but your knowledge will be essential in the following:
Manage the team responsible for maintaining the company's SOC 2, ISO-27001, and HITRUST audits, as well as customer security audits and RFPs.
Act as the primary point of contact (POC) for external and internal audits, maintaining independence and objectivity throughout the process.
Collaborate with legal and security teams to develop and implement a comprehensive security risk management program that meets ISO 27001, HITRUST and SOC 2 Type 2 requirements.
Participate in other Governance, Risk, And Compliance (GRC) initiatives as assigned.
Foster a culture of security awareness within the organization by developing and delivering security training programs.
Lead the development and execution of the company's security strategy and roadmap.
Oversee the security operations team and ensure that technical security controls are deployed and performing optimally.
Work closely with DevOps and Corporate Systems teams to integrate security best practices into the development process.
You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.
Qualifications
What you bring to the Personify Health Team:
In Order To Represent The Best Of What We Have To Offer You Come To Us With a Multitude Of Positive Attributes Including
CISSP, CISA, or equivalent security certification
Minimum 5-7 years of experience in information security leadership role
Proven experience in developing and implementing security programs that meet ISO 27001, HITRUST and SOC 2 Type 2 requirements
Strong understanding of audit methodologies and experience in leading internal and external audits
Excellent communication, interpersonal, and leadership skills
Ability to work independently and as part of a team
The ideal candidate will have a strong understanding of ISO 27001, HITRUST and SOC 2 Type 2 requirements and experience in leading audits. They will also be able to work independently and objectively to ensure that the company's security program is effective.
By reporting dually to legal and security, this position offers a level of independence to ensure objectivity during audits. This strengthens the audit language and demonstrates a commitment to meeting industry standards.
Personify Health is an equal opportunity organization and is committed to diversity, inclusion, equity, and social justice.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
Software Development, Wellness and Fitness Services, and Hospitals and Health Care
Referrals increase your chances of interviewing at Personify Health by 2x