Director of Cloud-Native Security Operations

Job title: Director of Cloud-Native Security Operations - 245347
Position Type: Contract to hire (3-6 months prior to full-time conversion)
Work Location: 100% Remote - EST Hours
Compensation Range: $200,000 - $240,000 / year + benefits (hourly rates commensurate with annual salary)

ABOUT OUR CLIENT / ABOUT THIS ROLE

Medix is currently seeking a Director of Cloud-Native Security Operations for one of our top healthcare data clients.

Our client is a non-profit healthcare services organization that owns and manages a single source of truth of healthcare provider, authorization and member data. They are building a cloud-native version of this product, hosted in Azure Cloud, and they are seeking a Director for the Security Architecture & Operations vertical.

This Director will be over a team of Architects (4-5 people), and will be responsible for building a Security Operations Program from the ground-up.

This role is available on a fully remote, contract to hire basis.

RESPONSIBILITIES

• Working within a highly compliant data ecosystem (HIPAA / Healthcare Data) to build a security operations program


• Heading up a new Security Architecture / Security Operations team who is focused on designing and implementing next-gen security for a new cloud-native ecosystem


• Overseeing a team of 5 Cloud-Native security Architects and Engineers (CNAPP, CIAM, CSPM, DSPM)


• Building a security operations program from the ground-up, specifically for cloud-native ecosystems - focused on both reactive and preventative security measures.


• Building in red/blue team exercises for proactive threat management


• Driving end-to-end Security Orchestration, Automation, and Response (SOAR) practices


• Leveraging data from Security Information and Event Management (SIEM) platforms to drive proactive threat detection and action


• Developing indecent response playbooks


• Building in a zero-trust mentality, with a shift-left goal of integrating security into the entire software and MLOps lifecycles.


• Driving security for cloud-native specific environments - examples would include Git and CI/CD Code, Docker Containers, Kubernetes & Orchestration Security, Microservices and API security, and Databricks for MLOps


• Demonstrating exceptional communication skills, as this role will be reporting to, and interacting with C-level executives nad Board Members on a routine basis,

REQUIRED SKILLS & QUALIFICATIONS

• 10+ years of professional experience in Security Operations


• Minimum of 3 years in a prior Director Level or Director Titled role


• CISSP Certification is preferred


• Prior Healthcare / HIPAA Data experience is highly desirable.


• At a minimum, must have worked in heavily regulated, data-driven industries.


• Must have built a Security Operations Program from scratch


• Must have experience with ZTA/ZTNA concepts in a Hybrid cloud or cloud-native environment


• Should have some background in CNAPP, CIAM, CSPM, CWPP, DSPM, etc

For California Applicants:

We will consider for employment all qualified Applicants, including those with criminal histories, in a manner consistent with the requirements of applicable federal, state and local laws, including the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance (FCIHO), Los Angeles Fair Chance Ordinance for Employers (ULAC), The San Francisco Fair Chance Ordinance (FCO) , and the California Fair Chance Act (CFCA).

This position is subject to a background check based on its job duties, which may include patient care, working with vulnerable populations, access to financial and confidential information, driving, working with heavy machinery, or working in a warehouse or laboratory environment. Due to these job duties, this position has a significant impact on the business operations and reputation, as well as the safety and well-being of individuals who may be cared for as part of the job position or who may interact with staff or clients.