Director, Information Security

Job Description

Salary:

Imagenet is an exciting, fast-growing SaaS and tech-enabled services company. We are sales, client, and employee driven. Led by a seasoned CEO who worked his way up in sales, marketing, and as a Chief Revenue Officer. Join us and have super fun, make great money, be yourself, enjoy our fast-paced culture, and leave your greatest career mark yet! We are simply the best, least-known healthcare company out there.

Imagenet:

Grew revenue 42% YOY from 2023-2024.

Target to grow by 50%+ in 2025.

Biggest revenue year in 22 years by far while achieving new heights in profits.

Have nearly 1,100 employees across the country and in Philippines.

Have 95% client retention.

A sales and marketing persons dream.

Just moved into a killer, open, modern, and super collaborative HQ in Tampa.

Our November 2024 Employee Survey had an 80% response rate [um, unheard of] with 76% of employees reporting they were Highly Satisfied with their job!

Our Mantra: Execution as Differentiation

Our Four (4) Solutions: Digital Mail/Print-to-EDI. Claims Processing. Contact Center. Member Communications.

Our Value Prop: (1) we deliver with higher quality, better accuracy, quicker turnaround, and less costs than in-house services or other outsourced solutions; (2) our experts provide industry guidance that our clients do not have in-house; (3) our proprietary SaaS and software solutions are truly unique to us.

No one has our niche IP.

Summary/Objective

The Director of Information Security will lead the development and execution of the companys cybersecurity strategy, ensuring compliance with industry regulations, managing risk, and aligning security initiatives with business objectives. This role is responsible for building and maintaining a corporate-wide security program, coordinating security audits and certifications, and working cross-functionally to implement effective security governance, policies, and procedures.

The ideal candidate is a strategic leader who can guide security initiatives across departments, collaborate with internal teams to address policy and control gaps, and oversee the roadmap for certifications and audits.

Essential Functions

Security Program Leadership: Define and execute a comprehensive security strategy aligned with business objectives. Develop policies and procedures to protect company assets while meeting regulatory requirements.

Security Certifications & Audits: Lead efforts to achieve and maintain necessary security certifications, working with external auditors and internal teams to ensure compliance.

Cross-Departmental Collaboration: Work closely with IT, compliance, legal, HR, and executive leadership to integrate security into business operations. Identify security gaps and implement controls.

Incident Management & Risk Mitigation: Oversee security incident response plans, ensuring effective risk mitigation strategies. Lead post-incident analysis and continuous improvement efforts.

Security Awareness & Training: Drive a security-first culture by developing training programs that enhance security awareness across the organization.

Executive Reporting: Regularly present security risk assessments, program updates, and compliance status to senior leadership in a clear and actionable manner.

Strategic Roadmap for Growth: Develop a roadmap to mature the security program into a fully operational CISO-level function as the organization scales.

Competencies

Strong leadership and cross-functional collaboration skills.

Proven ability to develop and execute security programs at an enterprise level.

Technical collaboration of regulatory compliance frameworks for State & Federal government programs and delegated entities.

Experience working with cloud security, DevSecOps, and securing hybrid or multi-cloud environments and toolsets

Experience leading security audits and obtaining industry certifications.

Strong decision-making ability in high-pressure situations, such as security incidents.

Excellent communication skills, particularly in explaining security risks and strategies to non-technical stakeholders.

Ability to evaluate and manage third-party security risks (vendors, contractors, partners).

Integrity, ethics, and ability to foster a security-conscious culture.

Supervisory Responsibility

This role may oversee security analysts, compliance managers, and other security personnel.

Works closely with IT and development teams without directly managing technical implementations.

Work Environment

Proximity to our Tampa HQ a plus with some remote work

Standard office environment with occasional travel as required.

Required Experience

10+ years in information security, risk management, or compliance, with at least 5 years in a leadership role.

Strong background in managing security programs, audits, and certifications.

Experience collaborating with cross-functional teams to implement security policies.

Certifications such as CISSP, CISM, or CISA are preferred.

Experience with regulatory compliance frameworks (e.g., NIST, HIPAA, SOC 2, HITRUST, FedRAMP).

Bachelors degree in cybersecurity, information security, business, or a related field. Masters degree preferred but not required.

Other Duties

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.

Hybrid remote