Senior Security Officer

at Vee Technologies
  • Remote - Worldwide

Remote

Cybersecurity

Senior

Job description

As Vee Healthtek’s (VHT) Senior Security Officer, you will report to the Chief Executive Officer (CEO) and lead the global security governance and compliance program. This role is solely responsible for aligning all cybersecurity efforts with business objectives. You will also lead efforts to comply with all applicable legal and regulatory requirements (both international and Federal), contractual obligations, and expectations of interested parties.

You are also responsible for managing an international team of security professionals while enhancing VHT’s resilience to cyber threats by leading the enterprise-wide risk management program, influencing business operations to develop robust and recoverable systems, and serving as the senior advisor to the incident response process.

Your primary efforts are to oversee the enterprise-wide Information Security Management System (ISMS), incorporating all administrative, physical, and technical safeguards required by the Health Insurance Portability and Accountability Act (HIPAA), as amended, client requirements, and other interested party requirements. This includes fostering a culture of security both within and outside the organization. To do this, you will optimize the allocation of corporate resources to meet both the business needs while simultaneously continuously improving the security posture.

You will collaborate with Executive Leadership, Business Operations, Contracting, Human Resources, Information Technology, Compliance, and Legal teams.

Responsibilities

  •   Manage an international team of cybersecurity professionals supporting the  security and cyber compliance program

  • Understand the legal, regulatory, and contractual obligations of each Business Line’s portfolio & services, client landscape, and assets managed by Businesses

  • Identify and implement Cybersecurity single point of contacts throughout the organization

  • Develop the company’s cybersecurity budget and propose business financial cases to present for the annual budgeting process

  • Responsibly, manage the company’s cybersecurity budget by meeting financial targets

  • Act as a Cybersecurity consultant to the Company and its affiliates

  • Ensure coordination and alignment with information security counterparts who support Vee Healthtek’s clients

  • Protect VHT’s interest by identifying operational, budget, and cyber risks introduced through any merger and acquisition activities

  • Protect Vee Healthtek’s reputation by establishing a security framework that meets potential client expectations during the contracting negotiation process

  • Serve as the organizational subject-matter expert on cybersecurity

  • Ensure alignment with Vee Healthtek’s Ethics and Compliance Program (e.g., incident management, escalation, procedure development, communication, education, etc.)

  • Conduct and support program gap analyses and implement controls to address gaps

  • Manage (or monitor) the Cybersecurity audits and risk assessments requested by Customers/Clients

  • In collaboration with organizational leaders, make recommendations for appropriate remediation and monitor status of plan completion

  • Define and monitor cybersecurity KPIs for the Company

  • In collaboration with Human Resources and Compliance, develop and maintain appropriate security protocols and relevant disciplinary actions (e.g., onboarding and off-boarding protocols, initial and refresher training, etc.)

  • Develop secure software development principles for the technology team and ensure its compliance

  • Ensure consistency of practice across all company locations, both on- and off-shore

Promote a culture of cybersecurity awareness

  • In coordination with Human Resource and Compliance, define and establish a Cybersecurity training program for relevant resources and employees based on policies and guidelines
  • Promote a culture of security integration and responsibility throughout the organization
  • Ensure that each of the business teams responsible for their work receive adequate training to keep data security in the forefront of their minds. This includes providing both general and role-based training where warranted.

Assess, monitor, and proactively mitigate known and emerging Cybersecurity Risks

  • Lead risk assessments for Company applications, digital services, infrastructure, and business delivery
  • Stay abreast of the latest security technologies, trends, and threats to assist in management of the company’s protection model
  • Maintain a dynamic threat assessment report based on Industry threats, trends, infrastructure, applications, critical services, and regulatory requirements
  • Actively monitor the Company environment for potential threats and enact
  • appropriate mitigation measures
  • Design, build and integrate relevant Cybersecurity solutions and processes to protect the Company and our clients
  • Establish cybersecurity maturity model targets and programs to assist the company in reaching a level of maturity and protection commensurate with the business and industry.
  • Develop and implement a Data Loss Prevention Program to protect the Company’s Intellectual Property and client information.
  • Identify, produce and implement software tools and technologies that will prevent data security threats to the company for internal and external forces.

Identify, manage, and remediate security incidents

  • In coordination with the Compliance team, serve as an escalation point for Company security incidents
  • Act as a Liaison with applicable state and federal agencies during security incidents
  • Establish a Cybersecurity Incident Response Program for appropriate management of security incidents.
  • In coordination with the Privacy Officer, ensure appropriate monitoring of physical security controls.
  • Lead remediation activities for security incidents.
  • Perform Root Cause Analyses for incidents, including short and long-term mitigation actions to prevent recurrences.
  • Represent the organization during the security-related crisis communication process.
  • Identify external forensic services for use as required for security incident investigations.

Establish escalation and reporting mechanisms to Executive Leadership

  • Function as the cybersecurity risk owner as part of the organization’s enterprise risk management process
  • Escalate significant security incidents to senior leadership.
  • Function as a liaison between Company executives and the business organization for all security initiatives or concerns.

Preferred/Required Certifications and Education

  • Bachelor’s Degree in Computer Science/Engineering/Cybersecurity, Digital Forensics or related field. Master’s Degree preferred. 7-10 years of progressive IT experience and demonstrated experience in cybersecurity specifically
  • Required: Certified Information System Security Professional (CISSP)
  • Preferred: Certified Information Systems Auditor (CISA); Certified Information Security Manager (CISM); Certified Chief Information Security Officer (CCISO); ISO / IEC 27001 Lead Implementer or Auditor
Share this job:
Please let Vee Technologies know you found this job on Remote First Jobs 🙏

Similar Remote Jobs

Vee Technologies logo

Vee Technologies

  • 2 remote jobs

Latest Jobs at Vee Technologies

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service 🙏

Apply