Director, Information Security

Imagenet is an exciting, fast-growing SaaS and tech-enabled services company.  We are sales, client, and employee driven. Led by a seasoned CEO who worked his way up in sales, marketing, and as a Chief Revenue Officer.  Join us and have super fun, make great money, be yourself, enjoy our fast-paced culture, and leave your greatest career mark yet!  We are simply the “best, least-known healthcare company out there.” You will change this!

Imagenet:

·         Grew revenue 42% YOY from 2023-2024.  Target to grow by 50% in 2025.

·         Biggest revenue year in 22 years by far while achieving new heights in profits.

·         Have nearly 1,100 employees across the country and in Philippines. 

·         Have 95% client retention.  A sales and marketing person’s dream.

·         Just moved into a killer, open, modern, and super collaborative HQ in Tampa.

·         Our November 2024 Employee Survey had an 80% response rate [um, unheard of] with 76% of employees reporting they were “Highly Satisfied” with their job!

Our Mantra: Execution as Differentiation

Our Four (4) Solutions: Digital Mail/Print-to-EDI. Claims Processing. Contact Center. Member Communications.

Our Value Prop: (1) we deliver with higher quality, better accuracy, quicker turnaround, and less costs than in-house services or other outsourced solutions; (2) our experts provide industry guidance that our clients do not have in-house; (3) our proprietary SaaS and software solutions are truly unique to us.  No one has our niche IP.

Summary/Objective

The Information Security Director serves as the process owner of all assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with the organization's information security policies. They are responsible for leading the organization’s cybersecurity program to ensure the protection of critical systems, data, and networks. This includes the development, implementation, and management of security policies, strategies, and procedures to safeguard the company’s information assets and technology infrastructure.

Essential Functions

Provide strategic leadership within the company’s cybersecurity program, working with executive management team to define acceptable levels of risk for the organization, and implement effective strategies to mitigate them.

Establish and maintain a corporate-wide information security management program to ensure that information assets are adequately protected.

Responsible for the administration of all compliance controls and audits, collaborating across the organization, to allow the company to achieve the appropriate certifications required to successfully operate in the market.

Ensure the deployment of advanced cybersecurity tools and technologies, including A.I. driven security solutions, to protect against evolving threats

Oversee the design and implementation of secure network architecture, database protection mechanisms, and application-level security.

Continuously assess the effectiveness of the existing cybersecurity program, related systems and recommend improvements or upgrades.

Manage the budget and resource allocation for the organization’s security program to ensure strategic goals are met efficiently.

Regularly communicate security posture, incidents, and risk assessments to the executive team in a clear, concise, and actionable manner.

Provide guidance and training in cybersecurity best practices to employees at all levels of the organization, fostering a security first culture.

Competencies

Excellent writing and verbal communication skills, characterized by the ability to clearly, concisely and consistently articulate concepts, and both quantitative and qualitative information

Strong decision-making skills, with the ability to lead effectively under pressure during incidents or crises.

Excellent analytical skills, demonstrated by the ability to identify and understand complex issues and problems, and compile and interpret information in a manner that provides appropriate recommendations

Extensive knowledge of the applicable federal and state regulations as well as a solid working knowledge of managed care operations, compliance program structures, and audit methodologies.

Technical collaboration of regulatory compliance frameworks for State & Federal government programs and delegated entities.

Experience working with cloud security, DevSecOps, and securing hybrid or multi-cloud environments

Ability to evaluate and manage third-party security risks (vendors, contractors, etc.)

Must exhibit the highest level of integrity and ethics and demonstrate professional representation of the company.

Proven experience with fostering a security-first culture within an organization and engaging employees in best practices.

Supervisory Responsibility

This position may have supervisory responsibilities; may have security and application engineers of various levels; may or may not have their own technical administration or project managers

Work Environment

This job operates in a professional office environment out of Tampa, but can work from a virtual office as well. This role routinely uses standard office equipment such as computers and phones.

Physical Demands

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.

Travel

Travel is not expected for this position but may be required on occasion.

Required Experience

10 years of experience in information security or IT security, with at least 5 years in a leadership role.

Certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or CISA (Certified Information Systems Auditor) are highly preferred.

Deep understanding of cybersecurity frameworks, tools, and technologies (e.g., firewalls, intrusion detection/prevention systems, encryption technologies, endpoint security).

Proven experience with risk management, incident response leadership, and business continuity planning.

Strong leadership, project management, and communication skills.

In-depth knowledge of regulatory frameworks and compliance standards (e.g., NIST, GDPR, HIPAA).

Education

Bachelor’s degree in computer science, Information Technology, cybersecurity, or related field. A Master’s degree is preferred but not required; equivalent experience in the field will be considered.