Our team is committed to enhancing physician and patient quality of life through Elation, a SaaS cloud-based clinical platform. Since inception, we’ve been focused on building a world-class technology solution that creates an experience of delight and ease for physicians, and that our users love.
Elation is looking for a Director of Information Security to establish and maintain a vision, strategy and program that ensures information assets and technology are adequately protected whilst concurrently enabling distributed engagement in Information Security across Elation. As a leader at Elation, you will contribute to the company’s success by growing our Information Security position, ensuring effective enablement across our organization, aligning engineering activities and skills towards a strong Information Security vision and instilling customer confidence in our ability to protect their information.We value diversity - great talent and ideas can come from anywhere! We've built a development team that is distributed across North America and comes from a diverse set of backgrounds and experiences.
We strongly encourage women and people from under-represented communities to apply. For this particular role, we prefer candidates in west coast North American time zones.
Responsibilities
- Inspire great Information Security: Build and motivate our teams towards demonstrating a best in class information security posture demonstrating a culture of security across Elation.
- Accelerate Information Security Program: Establish and manage a modern Information Security program that seeks to accelerate the impact of Information Security at Elation, apply modern techniques that seek to enable innovation. Engage with Corporate IT, Application Development and Infrastructure Development teams to build this program.
- Cross-Functional Collaboration: Work closely with other departments and stakeholders to ensure a unified approach to achieving strong Information Security and business goals.
- Threat Management: Build runbooks and mature approaches for rapidly responding to active incidents
- Risk Reduction: Develop a comprehensive risk reduction framework that works across all of Elation when seeking to protect our Information assets.
- Manage Security Engineering staff, mentoring their own skills and development
- Establish zero trust security that protects our distributed remote team
- Partner with Elations compliance team to maintain certifications such as CEHRT, SOC 2 and HIPAA
- Directly contribute to the development of tools within the security program
- Connect with security conscious customers to communicate Elation’s security operations or security incidents
- Develop a customer facing Trust Centre to increase transparency and automate interactions with customers
- Raise organizations understanding and visibility of security program
Professional Qualifications
- 7+ years experience as a security engineer / architect
- 5+ years managing a security program
- AWS Certified Security - SpecialtyCISSP
- Experience engaging in customer and vendor security discussions
- Experience in collaborating with cross functional departments
- Well acquainted with effective security practices across Corporate IT, SAAS application development and AWS infrastructure
- Interest or background in healthcare
- Strong internal and external communication skills
- Strong project management skills; ability to manage multiple projects/solutions
Salary range: $170,000-$200,000
Elation welcomes individuals from all backgrounds and walks of life. Elation is proud to be an Equal Opportunity Employer and is dedicated to creating and maintaining a diverse and inclusive work environment.We are committed to equal opportunity for all employees and applicants, and value individuals with diverse perspectives including, but not limited to: race, color, religion, sex, sexual orientation, socioeconomic status, age, gender identity or gender expression, national origin, disability or veteran status.Elation also complies with all applicable national, state and local laws governing nondiscrimination in employment as well as work authorization and employment eligibility verification requirements of the Immigration and Nationality Act and IRCA.
We firmly believe a strong culture that supports a diverse and inclusive workforce allows us to achieve Elation’s mission of helping independent primary care thrive.As a healthcare technology company whose mission is to support IPCPs and frontline healthcare workers, and as a tight-knit company where we have the utmost concern and care for our team members, Elation Health has adopted a Mandatory COVID-19 Vaccination Policy. This policy will comply with all applicable laws and is based on guidance from the Centers for Disease Control and Prevention and local health authorities.We will not require any candidates to be vaccinated in order to interview for our open positions, but all new hires at Elation will be required to share a copy of their vaccination certification or present documentation to request an exemption. In compliance with the EEOC, any team member in need of an exemption from this policy due to a medical reason, or because of a sincerely held religious belief must provide People Ops (hr@elationhealth.com) with appropriate documentation.
For a medical exemption, we require a doctor’s note, and for a religious exemption, we require a note from the team member outlining the request.