Cloud Security Manager - Information Security & Risk ...

Company : enGen Job Description : JOB SUMMARY This role focuses on providing exceptional Information Security and Risk Management services for the organization. Collaborate closely with security peers, HM Health Solutions customers, and application teams to align with evolving security requirements. Oversee the activities of Information Security staff, participating in recruitment, promotions, and other personnel actions. Cultivate team talent, manage resources, and coordinate departmental operations effectively. Oversee security technologies for networks, systems, and data, ensuring budget goals are met while maintaining operational efficiency. Contribute to strategic planning efforts alongside directors to develop actionable strategies that align with corporate objectives. Participate in the rollout, training, and problem-solving of new technologies and processes. ESSENTIAL RESPONSIBILITIES Manage departmental operations, including hiring decisions, coaching, performance management, and staff productivity. Plan and implement policies and procedures necessary for efficient department operation; have accountability for budget management. Oversee project management initiatives to enhance process efficiency, collaborating with leadership to develop innovative security solutions. Lead and inspire the department through organizational change, fostering relationship development, encouraging security training, and championing innovation. Ensure compliance with corporate Information Security policies and industry standards. Communicate effectively at all organizational levels, preparing presentations, policies, and reports; represent the organization externally while promoting awareness of security threats. Perform other duties as requested. EDUCATION Required Bachelor's Degree in Information Security, Information Systems, Computer Science, or a related field. Substitutions 6 years of relevant experience can substitute for a Bachelor's Degree. Preferred Master's Degree in Computer Science, Information Security or a related field. EXPERIENCE Required 7 - 10 years of experience in Information Security, Risk Management, or Information Technology. 7 - 10 years of experience in developing and presenting Information Security concepts to various audiences. 1 - 3 years in mentoring others in leadership roles. 1 - 3 years in staff management responsibilities. 1 - 3 years in developing and executing strategic business plans. Preferred 10 - 15 years of experience in Information Security and/or Risk Management or related IT fields. Experience managing information security functions using the HITRUST Common Security Framework or the NIST 800-83 framework. Experience supporting SSAE 16 or SOC 2 Security Trust Principle audits. Experience in budget establishment and achievement of fiscal goals. Participation in security industry organizations such as HITRUST, ISACA, InfraGard, ISC2, ISSA, etc. LICENSES AND CERTIFICATIONS Required None. Preferred Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) or Certified in Risk and Information Systems Controls (CRISC) or ITIL. SKILLS Comprehensive knowledge of regulatory requirements such as HIPAA, PCI DSS, and FIPS-140. Strong interpersonal and teamwork abilities. Proven experience in leading process improvement initiatives. Ability to drive high-performance, multi-disciplinary teams. Exceptional competency in project execution. Effective relationship management skills. Travel Requirement 0% - 25% PHYSICAL, MENTAL DEMANDS and WORKING CONDITIONS Position Type Office-Based Regular teaching and training of others. Frequent travel from the office to various worksites. Physical Worksite Required: Yes Pay Range Minimum: $108,000.00 Pay Range Maximum: $201,800.00 This range is determined based on various factors, including the candidate's experience and market considerations. Highmark Health and its affiliates maintain a non-discrimination policy based on protected status.

Created: 2026-03-11