Prime Therapeutics
Sr. Director Information Security – Remote
in
Nashville ,
Tennessee
Our work matters. We help people get the medicine they need to feel better and live well. We do not lose sight of that. It fuels our passion and drives every decision we make.
Job Posting Title
Sr. Director Information Security – Remote
Job Description
As a Senior Director Information Security you would be responsible for providing leadership and strategic direction to Primes Information Security program, subordinate directors, managers, and their teams to ensure Prime meets its business objectives.
You would be responsible for creating and managing business relationships both internal and external to Prime. You would have the opportunity to continuously innovate and enhance the security landscape to solve complex challenges with simple, robust, and creative security solutions.
Responsibilities
Partner with the Chief Information Security Officer (CISO) to set department vision and direction aligned with security leadership and key business partners
Establish strong partnerships and serve as a collaborative security advisor with clients, stakeholders and senior management, offering strategic insights on our security landscape
Partner with IT functions to ensure the integrity, confidentiality, and availability of information assets by effectively managing and governing IT security practices
Develop and manage a forward-looking information security strategy that aligns with business goals, emphasizing innovation in security practices to protect against evolving threats and balances Primes need for securing client information
Implement and maintain security KPIs, providing real-time dashboards and quarterly reports to be shared with senior leadership and the Board of Directors
Lead, mentor, and grow the Information Security team, fostering a culture of excellence, agility, and continuous improvement
Serve as senior IT leader for all IT resource projects and provide appropriate insight into areas that impact the security of Primes environment balancing risk and costs to an agreed upon level
Other duties as assigned
Minimum Qualifications
Bachelors degree in Computer Science, Business Administration or related area of study, or equivalent combination of education and/or relevant work experience; HS diploma or GED required
10 years of work experience in Information Security, Governance, Risk and Compliance or other Security related field
7 years of people management and leadership experience
A minimum of one certification in information security (CISSP, CISA, CRISC, etc.)
Must be eligible to work in the United States without need for work visa or residency sponsorship
Additional Qualifications
Ability to effectively select, develop, engage, coach, retain, leverage, and mobilize top talent, including virtual teams across multiple locations
Proven ability to lead and develop a high-performing team, with exceptional communication and stakeholder management abilities.
A strategic mindset capable of translating security risks into business impacts and solutions
Deep knowledge across application security, cloud and infrastructure security, threat detection, incident response, and compliance, specifically within the healthcare sector
Preferred Qualifications
10 years of experience working in a highly regulated healthcare environment
Experience working with regulatory compliance requirements such as HIPAA, HITRUST, SOC2, PCI, etc
Experience implementing industry frameworks and control requirements such as NIST 800-53, MARS-E, FIPS-140-2, FedRAMP
Experience documenting highly complex System Security Plans (SSPs)
Experience working with and managing multiple 3rd party vendors
Minimum Physical Job Requirements
Ability to travel; some overnight travel required
Ability to work a flexible schedule including weekends, overtime, on-call, and shifts outside of Primes core business hours of 9:00 a.m. to 3:00 p.m.
Constantly required to sit, use hands to handle or feel, talk and hear
Occasionally required to lift and/or move up to 10 pounds
Specific vision abilities required by this job include close vision, distance vision, color vision, peripheral vision, depth perception and ability to adjust focus
Reporting Structure
Reports to Chief Information Security Officer (CISO)
Potential pay for this position ranges from $175,500.00 – $280,100.00 based on experience and skills. Pay range may vary by 8% depending on applicant location.
To review our Benefits, Incentives and Additional Compensation, visit our Benefits Page ( and click on the “Benefits at a glance” button for more detail.
Prime Therapeutics LLC is an Equal Opportunity Employer. We encourage diverse candidates to apply and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity or expression, genetic information, marital status, family status, national origin, age, disability, veteran status, or any other legally protected class under federal, state, or local law.
Positions will be posted for a minimum of five consecutive workdays.
Prime Therapeutics’ fast-paced and dynamic work environment is ideal for proactively addressing the constant changes in today’s health care industry. Our employees are involved, empowered, and rewarded for their achievements. We value new ideas and work collaboratively to provide the highest quality of care and service to our members.
If you are looking to advance your career within a growing, team-oriented, award-winning company, apply to Prime Therapeutics today and start making a difference in people’s lives.
Prime Therapeutics LLC is an Equal Opportunity Employer. We encourage diverse candidates to apply and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. If you are an applicant with a disability and need a reasonable accommodation for any part of the employment process, please contact Human Resources at 1. or email .
#J-18808-Ljbffr
application-security stakeholder-management Innovativeness Incident response HIPAA cloud-security Information security Communication pci risk management FedRAMP SOC2 Leadership Management