Role Summary
Are you a strategic security leader with the expertise and vision to safeguard enterprise technology and data in a rapidly evolving healthcare landscape? AdvancedMD is seeking a visionary Director of Information Security to lead our enterprise security strategy, protect critical data, and ensure compliance in a dynamic healthcare technology environment. In this high-impact role, you’ll partner with executives and technology leaders to shape security frameworks, manage risk, and respond to evolving threats. You’ll lead a talented team, champion a culture of security awareness, and drive initiatives such as the development of a Trust Center to strengthen transparency and trust with our customers.

This is an exciting opportunity to shape the security posture of a healthcare technology leader. If you are a decisive, forward-thinking information security executive who thrives in a collaborative, high-impact environment and is passionate about protecting data, privacy, and trust, we want to hear from you.

Essential Job Duties:

• Strategic Leadership: Develop, communicate, and drive the organization’s information security vision and strategy aligned with business objectives and regulatory requirements.
• Policy & Compliance Management: Serve as the Security Officer to design, implement, and maintain comprehensive security policies, standards, and guidelines. Ensure compliance with relevant laws, regulations, and industry standards (e.g., HIPAA, HITRUST, and SOC2).
• Governance & Risk Management: Oversee risk assessment and mitigation activities, manage enterprise-wide security risks, lead incident response planning, execution, and post-incident analysis.
• Cybersecurity Operations: Manage operational security activities, including monitoring, threat detection, vulnerability management, and the coordination of response and recovery efforts.
• Awareness & Training: Foster a corporate culture of security through strategic training programs, awareness campaigns, and regular communication with staff at all levels.
• Team Leadership & Development: Build, mentor, and lead a high-performing information security team. Oversee recruitment, retention, and professional development within the function.
• Stakeholder Engagement: Serve as the primary contact for internal and external audits, regulators, and third-party partners on matters related to information security.
• Budget Management: Develop and manage the information security budget, ensuring investments align with strategic priorities and deliver measurable value.
• Continuous Improvement: Monitor emerging risks, vulnerabilities, technologies, and best practices. Drive continuous improvement processes to strengthen the organization’s security posture.
• Trust Center Development: Spearhead the creation and ongoing enhancement of a trust center to centralize security, privacy, and compliance resources. Ensure the trust center serves as a transparent platform for communicating organizational commitments, controls, certifications, and ongoing improvements to customers, partners, and stakeholders, thereby reinforcing confidence and facilitating proactive information sharing.

Qualifications:

• Bachelor’s or Master’s degree in Computer Science, Information Security, Cybersecurity, or a related field
• 10+ years of progressive experience in information security
• 5+ years in a senior leadership role
• Demonstrated expertise in information security management, risk management, cyber defense, and regulatory compliance
• Industry-recognized certifications such as CISSP, CISM, CISA, or equivalent
• Strong understanding of current security threats, trends, technologies, and architectures
• Experience with cloud security, application security, and modern infrastructure (on-premises and cloud)
• Exceptional leadership, communication, and influencing skills
• Ability to translate complex technical concepts into business language for a variety of stakeholders
• Proven track record of strategic planning, program execution, and team development
• Experience managing budgets and outside vendors

• Excellent written and oral communication skills

What Will Make us LOVE You

• Advanced degree (MBA, MS in Cybersecurity, or related field) strongly desired
• Prior experience in a similar role within the same industry or with large-scale organizations
• Experience interfacing with Boards of Directors and executive leadership
• Experience with M&A due diligence and integration from an information security perspective
• Familiarity with privacy laws, data protection regulations, and security standards

Are you FIT? Learn more about our Company culture

• Flexible. Vibrant, collaborative & diverse culture that is open-minded & embraces change.
• Insightful. Innovative industry experts who transform client businesses by delivering winning outcomes.
• Trusted. Experienced, reliable & accountable advocates with unwavering integrity.