Director of Infrastructure & Security

About the Company: SpectraMedix is a leader in healthcare analytics, helping U.S. healthcare organizations achieve financial and clinical goals through actionable insights. We support progressive healthcare organizations in enhancing quality, reducing preventable utilization, and optimizing care management.

About the Role: The Director of Infrastructure & Security will lead and secure SpectraMedix's IT infrastructure, ensuring its scalability, reliability, and compliance with healthcare industry standards. This role demands a visionary leader with technical expertise and a strategic approach to infrastructure and security management. The Director will collaborate closely with executive leadership on infrastructure investments, enforce compliance with healthcare security regulations and IT best practices, and drive a security-first approach within the organization. The Director of Infrastructure & Security also serves in the role of Chief Information Security Officer (CISO).

Responsibilities:

• Leading management of Azure cloud computing resources, co-located data center, and office sites’ on-premises virtualized server platforms and networks, focusing on high performance, scalability, and cost optimization.
• Design and implement robust resiliency strategies, ensuring business continuity aligned with industry best practices to ensure client SLA compliance.
• Manage relationships with vendors, negotiate contracts, and implement solutions to maximize infrastructure value.
• Direct the planning and execution of hardware and software upgrades, balancing innovation with cost control.

Qualifications:

• Minimum of 10 years in IT infrastructure and security management, preferably in healthcare IT or population health, with a strong record of managing cloud and on-premises infrastructure, regulatory compliance, and performance optimization.
• Proven experience in leading security compliance efforts (HIPAA, HITRUST, SOC2) and implementing disaster recovery and business continuity plans.
• Extensive knowledge of network and data security systems, including firewalls, encryption, and monitoring tools (e.g., FortiGate, ManageEngine).
• Advanced skills in systems and network administration (Windows Server, Linux), virtualization (Hyper-V, VMware), and hybrid cloud platforms (Azure preferred), with a focus on cost-effective, secure operations.
• Knowledgeable and experienced with cybersecurity practices, including incident response, vulnerability assessment, and threat mitigation.
• Strong understanding of federal and state healthcare data protection laws, with practical skills in audit readiness and compliance.
• Skilled in analyzing and enhancing IT security through risk assessments and external security audits.

Required Skills:

• Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM)
• IT Infrastructure Library (ITIL) certification for service management or similar certifications.
• Cloud certifications (e.g., Microsoft Certified: Azure Fundamentals AZ-900, or AZ-500 for security-focused roles).