Cybersecurity Manager

Position: Cyber Security Lead/ Manager
Location: Commerce, CA ( 5x on site while on contract, 2-3x/week upon conversion )
Duration: 3 Months contract to Hire

Project Overview

Manager, Cyber Security Services

The IT Cyber Security Manager position is a critical leadership role within AltaMed s Information Security program. This position provides technical, operational, and strategic oversight for the security technologies, processes, and standards that protect the confidentiality, integrity, and availability of AltaMed s patient, employee, and business data. Given the increasing volume and sophistication of cyber threats targeting healthcare organizations, it is essential to maintain consistent leadership and technical expertise in this function to ensure regulatory compliance and to protect the organization s digital assets.

Key Responsibilities

Cybersecurity Operations Oversight:

The position serves as the primary point of contact for cybersecurity operations, overseeing architecture, design, and maintenance of key security solutions, including anti-malware, identity and access management, vulnerability management, and cloud security. A vacancy would delay response and resolution times for security incidents, increasing exposure to risk.

Incident Response & Threat Management:

The Manager leads technical response efforts for security incidents and investigations in coordination with Legal, Privacy, and Compliance. Without this leadership, incident handling could become fragmented or delayed, risking noncompliance with HIPAA breach notification requirements.

Regulatory & Compliance Alignment:
As a healthcare provider, AltaMed is required to comply with HIPAA, HITECH, and other data protection standards. This role ensures that cybersecurity controls and operations remain aligned with these regulatory frameworks. A gap in this position increases compliance and audit risks.

Team Leadership and Mentorship:
The Manager directly supervises the Cyber Security Services team, providing technical guidance, mentoring, and prioritization of work. Without leadership continuity, the team s effectiveness, morale, and accountability will decline.

Strategic Planning & Vendor Management:
The position partners with the VP, Information Security in managing vendor relationships, budget forecasting, and security tool licensing. These activities are critical to cost control and maintaining uninterrupted security services.
The Manager, Cyber Security Services (CSS) will be responsible for developing, implementing, and maintaining cybersecurity-related services. This includes architecture, engineering, administration, and analysis activities to support the organization s cybersecurity needs. Cyber Security Services will include the related managing the security technologies, processes, and standards. This position will partner closely with Legal, Privacy, Compliance, and IT GRC to ensure alignment on cybersecurity risks and compliance requirements. The Manager, CSS will also partner with the rest of IT and the business on the deployment, impact, and maintenance of cybersecurity controls.
Minimum Requirements

• Bachelor of Science degree required.
• Minimum of 5 years of experience providing technical guidance, building and maintaining customer relationships, and managing day-to-day operations of a cybersecurity services team required.
• Required one of- CISM, CISSP, Security+, Microsoft AZ-500/SC-200, or relevant GIAC certifications (such as GCIH IA)

Skills and Abilities

• Ability to work in a dynamically changing environment and lead people through modernization and continuous improvement of cybersecurity-related technologies and processes.
• Ability to work well with diverse people; effective oral and written communication skills.
• Technical proficiency, foundational knowledge of enterprise IT concepts, with minimal deep knowledge/experience of one enterprise technology.
• Competency in leading people and building partnerships to support the organization s needs.
• Ability to manage several projects simultaneously.
• Ability to communicate well.
• Ability to maintain professional relationships with team members, Peers, and customers.

Essential Job Functions

• Serve as primary point of contact for cybersecurity operations, responsible for the architecture, design, and maintenance of information security solutions such as anti-malware, cloud security/web filtering, identity and access management/authentication, logging and monitoring, vulnerability management, security analytics, and metric reporting.
• Serve as a mentor and reference for information security team members, reviewing their work to ensure that team members' deliverables are timely, complete, and accurate.
• Serve as primary technical lead for information security incident response activities, ensuring that work is performed and documented according to professional standards, industry best practices, and direction from internal/external Legal counsel, HR, and Privacy.
• Provide security guidance and direction to IT and corporate project teams, as needed.
• Assist VP, Information Security in managing vendor relationships and ensuring appropriate licensing is maintained for security tools and services.
• Assist VP, Information Security with enterprise-wide risk assessments, IT audits/questionnaires, strategic planning, budget development, and policy/standard development, as needed.
• Responsible for governing activities related to the availability, integrity, and confidentiality of patient, provider, employee, and business information in compliance with the organization's security policies and procedures, regulations, and law.
• Manage/supervise a team of security professionals.
• Perform other duties as assigned.