Serve as a key cybersecurity subject matter expert across ConvenientMD’s healthcare technology environment.
Support the development, implementation, and ongoing improvement of cybersecurity strategies, policies, procedures, and controls to protect organizational data, clinical systems, and sensitive patient information.
Monitor, assess, and respond to cybersecurity risks, vulnerabilities, incidents, and emerging threats, coordinating remediation efforts with internal teams and external partners as needed.
Apply healthcare-specific security and regulatory knowledge, including HIPAA, privacy, compliance, and risk management considerations, to support secure technology decisions.
Help champion a culture of cybersecurity awareness and best practices across clinical, corporate, and technical teams.
Support secure and reliable IT operations across infrastructure, networking, platforms, hardware, devices, applications, and end-user environments.
Partner with IT teams to identify operational gaps, strengthen systems, troubleshoot complex issues, and improve the overall stability and security of the technology environment.
Evaluate tools, workflows, access controls, support trends, infrastructure needs, and healthcare technology requirements, including HIPAA, HITRUST, privacy, compliance, clinical operations, patient data protection, and regulated systems, to recommend practical improvements.
Develop and maintain a penetration testing schedule, partnering with internal teams and external vendors as needed to support timely remediation of identified vulnerabilities.
Plan and execute an annual tabletop disaster recovery/business continuity exercise to test readiness, identify gaps, and strengthen organizational response planning.
Assist with technology initiatives that require both cybersecurity insight and operational execution.
Act as a trusted technical partner to IT leadership, including the CIO, by helping assess risk, frame options, and translate cybersecurity and infrastructure considerations into business-relevant recommendations.
Partner with clinical, operational, and corporate stakeholders to ensure technology solutions are secure, scalable, practical, and aligned with patient care needs.
Influence decisions through subject matter expertise, clear communication, risk analysis, and thoughtful recommendations.
Support governance-related work where needed, including documentation, policy alignment, process improvement, and compliance readiness, while keeping cybersecurity and healthcare technology risk at the center of the role.
Analyze data, support trends, recurring issues, and risk indicators to identify opportunities for improvement.
Develop and maintain clear documentation, including technical procedures, cybersecurity policies, user resources, and process materials.
Support the creation of self-service resources and end-user guidance to improve efficiency and reduce preventable support volume.
Track and report on relevant KPIs, risks, trends, and improvement efforts to support accountability and informed decision-making.
Requirements
5–8+ years of experience across IT security, infrastructure, operations, networking, applications, platforms, hardware, and/or technical support.
Strong cybersecurity experience within a healthcare environment is strongly preferred; experience in similarly regulated, data-sensitive environments may also be considered.
Working knowledge of healthcare technology environments, including HIPAA, HITRUST, privacy, compliance, clinical operations, patient data protection, and regulated systems.
Experience partnering with senior IT or business leadership to assess risk, influence decisions, and support technology planning.
Experience with IT governance, documentation, policy development, disaster recovery/business continuity planning, or compliance processes preferred, but this role is not intended to be governance-only.
Prior people leadership or team development experience is helpful, but this role is primarily designed as a senior individual contributor and cross-functional partner.
Tech Stack
Cyber Security
Benefits
Collaborative team environment that encourages professional growth
Urgent care services at no cost to our team members and their families
Extensive benefit offerings including health, dental, and vision coverage, company paid short-term disability, and optional pet insurance
401k match after one year of service
Access to our primary care (depending on location)
Educational Alliance with Purdue University Global and reduced tuition rates for team members and their families
Employer rewards and access to discounts offered on services and products such as hotels, travel, entertainment, restaurants, and more