We are seeking a highly skilled Information Security Officer with a strong background in Cloud based infrastructures with experience in the healthcare industry. The ideal candidate will be responsible for identifying cyber threats and vulnerabilities and safeguarding our information systems against them, ensuring compliance with security standards, and enhancing our security posture through strategic implementations and robust security architectures. This position will report directly to the CTO.

Responsibilities:

• Design and enforce policies and procedures that protect our organization's computing infrastructure and data from all forms of security breaches.
• Implement and manage security solutions in the cloud ensuring robust security posture.
• Information Security Officer will develop, maintain, and enforce security standards and guidelines in accordance with industry best practices and compliance requirements.
• Conduct quarterly security assessments and audits to identify vulnerabilities within the infrastructure, utilizing tools for SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) for more frequent analysis.
• Lead the initiative for image and package vulnerability scanning and management, ensuring all components meet our security criteria.
• Collaborate with IT and development teams to promote secure coding practices and integrate security measures into CI/CD pipelines.
• Information Security Office will collaborate with Executive leadership on regulatory and healthcare compliance.
• Collaborate with HR and IT to ensure delivery and compliance of policies and procedures.
• Oversee the creation and maintenance of incident response plans and security breach drills to ensure preparedness for any security incidents.
• Manage the secure configuration and maintenance of all cloud services and infrastructure, optimizing for both security and cost.
• Management of outside auditing and security assessments, and vendor security assessments.
• Maintenance of SOC II Type 2 certification and other certifications as needed.
• Stay abreast of the latest in security regulations, threats, and technologies to continuously refine our security strategy.
• Work closely with stakeholders across the organization to educate and advocate for a culture of security awareness and best practices.

Position Requirements:

• Bachelor’s degree in computer science, cybersecurity, information technology, or a related field.
• 5+ years of proven experience as an Information Security Officer or similar role with a focus on cloud environments.
• Strong expertise in implementing and managing security frameworks.
• In-depth knowledge of cloud security architecture, network security, and application security principles.
• Familiarity with SIEMs, compliance management, vendor management, and other security and vulnerability management tools.
• Experience with incident response planning, execution, and security breach management.
• Exceptional problem-solving skills with meticulous attention to detail.
• Effective communication and collaboration skills, with the ability to lead security initiatives and influence organizational culture toward improved security.

Preferred:

• Relevant professional certifications such as CISSP, CISM, or cloud-specific security certifications.
• Experience in risk assessment, threat modeling, and security compliance standards (e.g., ISO 27001, NIST frameworks).
• Knowledge of additional cloud security and management tools.

EEO CODE – eBlu Solutions is fully committed to employing a diverse workforce. We recruit and retain talented individuals without regard to gender, race, age, marital status, disability, veteran status, sexual orientation, gender identity, or any other status protected by federal, state, or local law. eBlu Solutions is an Equal Employment Opportunity and Affirmative Action Employer.

EO/Minorities/Females/Disabled/Veterans