Manager, System Security | NantHealth

Are you ready to link your passion with a purpose? At NantHealth, we build technology that simplifies healthcare. We manage the data and decisions that help the healthcare industry deliver better patient care. NantHealth's products target specific pain points that inhibit healthcare from reaching its full potential. Our payer-provider collaboration solutions increase operational efficiency, unlock savings, and enhance communications. Our treatment plan validation capabilities help payers better manage costs for oncology and autoimmune conditions. We're seeking innovative thinkers who love doing meaningful work. If you're looking to bring your skills and expertise to a growing technology company, it's time for you to join us!

To ensure we can provide the best in healthcare tech, we focus on building the best team. Through holding true to our core values - clarity, empathy, collaboration, integrity, a sense of community, and a pioneering approach - we are creating a vibrant culture where ideas can blossom, people can thrive, and success can flourish.

Company : NantHealth, Inc.

Location : 2871 Lake Vista Dr., Suite 210 Lewisville, Texas 75067

Position Title : Manager, System Security

Hours : Monday - Friday, 8 : 00 am to 5 : 00 pm, 40 Hours / Week

Summary of Duties : Plan, initiate, and manage information technology projects. Lead and guide the work of technical staff. Serve as liaison between business and technical aspects of projects. Plan project stages and assess business implications for each stage. Monitor progress to assure deadlines, standards, and cost targets are met. Serve as an internal information security leader, while coaching and developing an information security team of 3-4. Serve as an information security advisor to key IT and business stakeholders, establishing trust relationships through active engagement and collaboration. Act in an advisory role in application development and acquisition to assess security requirements and controls and to ensure that security controls are implemented as planned. Design, implement, and support security controls for a multi-tenant software as-a-service product. Provide support, implementation, and consulting service for application / software security assessment, vulnerability, and penetration assessment and other technical security controls. Work collaboratively with the wider NantHealth business to understand the requirements and strategic initiatives, ensuring the platform can support and scale to the business needs in a secure manner. Perform at the highest level of security engineering and operations required to support large, complex implementation of systems, software, and development processes. Provide information security expertise and support to assist in the achievement of both corporate and cloud risk and compliance programs. Provide expertise and support in all environments to ensure control activities are designed and implemented appropriately to protect the security, confidentiality, privacy, integrity, and availability of data in compliance with the organization's policies and standards. Implement and monitor corporate business processes, recommend improvements, and influence stakeholders to achieve information security goals and objectives related to Information Technology general controls. Assist external auditors conducting annual compliance audits by reviewing all evidence to confirm it satisfies the items included in the document request list. Ensure company's security framework remains in compliance with applicable regulations including evolving data privacy regulations. Consult on projects that automate business processes and drive employee efficiency to design and implement new controls to achieve compliance objectives and requirements. Drive the development, implementation, and updating of security policies and procedures. Advanced knowledge of systems and outcomes with ability to understand impact of solution design and implementation of business strategic objectives and requirements. Remote work permitted.

Qualifications : The position requires a Bachelor's degree in Cybersecurity, Computer Science and Engineering, or a related field and seven (7) years of experience in the job offered or as a Security Engineer, Cyber Security Analyst, or a related role. Employer will accept a Master's degree in Cybersecurity, Computer Science and Engineering, or related field and five (5) years of experience in the job offered, or as a Security Engineer, Cyber Security Analyst, or a related role. The position requires experience with the following : Experience leveraging current tools and techniques related to attack and defense methodologies; Experience conducting full-scope assessments including : social engineering, server and client-side attacks, web application exploitation, protocol subversion, and access restrictions; Experience configuring, running, validating, and contextualizing the findings of vulnerability discovery tools; Experience countering persistent threats to enterprise environments; Experience developing scripts, code, and novel methods to solve data intensive challenges; Experience reviewing firewall configurations, log files, and network artifacts to identify attack conduits; Experience with Information Security Frameworks; Experience articulating technical concepts to non-technical users; Experience with systems and outcomes with ability to understand impact of solution design and implementation of business strategic objectivities and requirements; Experience driving security incident response life cycle; Experience in security operations and monitoring. Experience in developing and documenting security architecture and plans, including strategic, tactical and project plans; Experience in network and systems forensics investigations and eDiscovery; Advanced experience with operating systems such as Windows, Unix / Linux. Remote work permitted.

The salary range for applicable US-based applicants to this position is below. The specific rate will depend on the successful candidate's qualifications, prior experience as well as geographic location.

• $135,000 - $196,000 base salary.

We value each of our employee's total wellness. From robust medical, dental, and vision insurance, to financial planning assistance, to physical and mental wellness discounts, including an optional annual subscription to the Headspace app and unlimited access to our online learning platform, we understand that our company succeeds when our employees succeed as individuals.

Additional notable benefits include :

NantHealth provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.