Job Summary:
The IT Security Manager is responsible for ensuring the security and integrity of REE Medical's information systems and data. This role involves developing and implementing security policies and procedures, conducting regular vulnerability assessments, and managing incident response. The IT Security Manager works closely with cross-functional teams to address security risks and maintain compliance with industry standards and regulations. This position requires a knowledgeable and proactive individual who can stay up to date with the latest security threats and technologies, and implement appropriate measures to mitigate risks for REE Medical.
Responsibilities:
- Driving the complete team strategy and direction in collaboration with the Director of IT Operations
- Owning the goals, the metrics, and team structure for all Department areas.
- Working in tandem with the Director of the department to ensure complete alignment across the team.
- Leading the respective team for their success and owns overall department success.
- Coaching, mentoring, and tracking each of their teams' performance ensuring alignment with the overall departmental goals and company strategy.
- Owning any team timecards and PTO approvals.
- Setting team goals and tracking towards team success, along with owning each supervisor's development and overall group development for medical services skills.
- Acting as the lead in interview and onboarding processes for all new team members.
- Overseeing the overall performance management process across the department, this can include coaching conversations, reviews as needed, addressing any performance concerns, etc.
- Ensuring the total team follows all processes and procedures related to Operational Programs and safeguarding personally identifiable information / personal health information across the team.
- Owning weekly department meetings and bi-weekly staff check-ins to disseminate essential information and updates.
- Managing and reporting on team compliance within REE Medical's policies and procedures and ensuring compliance with industry standards and regulations, such as HIPAA and GDPR
- Serving as the technical security expert, offering conceptual insights, architectural documentation, and hands-on coding expertise.
- Overseeing the implementation and maintenance of security protocols, technologies, and policies to protect company data and IT assets.
- This can include preparing and presenting reports to senior management and stakeholders on IT security metrics, compliance, and overall risk posture.
- Leading the IT security team in conducting regular security assessments and vulnerability testing to identify and mitigate risks.
- This can include owning and managing relationships with external security vendors, consultants, and auditors.
- Monitoring and respond to security incidents, conduct investigations, and implement incident response procedures as necessary.
- Collaborating with all departments to integrate security practices into business processes
- Staying updated on emerging threats and industry trends to proactively address potential vulnerabilities and security issues.
Requirements
What you need in this role to be successful:
- You must have at least 7+ years of IT Security experience, understanding the complexities of a growing organization and how it impacts Security Infrastructure.
- This means you will be able to speak to the metrics, success and learnings from implementing or supporting different security programs. We understand you may not be able to speak/show prior work due to different IP agreements but we want you to be able to speak of all tasks owned vs delegated, how you overcame challenges, and speak through the metrics and changes made after completing the different programs.
- This also means you have experience in developing and implementing IT security strategies and policies.
- This also means you are a growing expert of information security standards, regulations (e.g., GDPR, HIPAA), and compliance requirements.
- You must have at least 3+ years of supervisory experience with a team of 2 or more
- Experience in managing people in a remote setting is a plus.
- You need to have experience with difficult conversations, holding team members accountable towards their projects and metrics, and understand how to project manage the different requirements of different training needs.
- Industry certifications such as CISSP, CISM, or CISA are strongly preferred and are required to be completed within the first year of employment if you do not have 1 of the listed above yet.
- Excellent strong project management skills, capable of coordinating multiple initiatives simultaneously
- Owning in-depth knowledge of learning theories, instructional design principles, and adult learning methodologies
- Expert knowledge in using learning management systems (LMS) and other e-learning platforms to deliver and track training programs
- Strong leadership skills and goal-driven approach, with the ability to motivate and inspire teams towards achieving common goals.
- Excellent communication and interpersonal abilities, with a focus on building and maintaining relationships with internal and external stakeholders.
- Proficiency in data analysis and reporting, with the ability to leverage technology to drive process improvements.
- Experience navigating changing priorities and leading teams through time of change.
- Excellent analytical, project management, and problem-solving abilities, capable of handling multiple priorities in a fast-paced environment with an eye for continuous improvement and operational efficiency.
- Ability to think strategically while still maintaining a detail-oriented, self-motivated, and well-organized mindset
- Strong Proficiency in MS Office, HRIS, ATS, or other People Functional Tools and automation systems.
- Strong written and verbal communication skills, with a track record of presenting to senior management.
- Exceptional attention to detail.
- Experience in start-up or early-stage environments with little or no defined infrastructure or processes.
- Track record of working in a fast-paced, fluid environment.
- Ability and empathy to relate to all levels of the organization.
- Analytical and problem-solving orientation.
- Bachelor's degree in Computer Science, Cyber Security, or other related field is required. 4+ years of experience can substitute the education requirements.
Benefits
What REE Offers you:
At REE, we believe in empowering our employees to thrive both personally and professionally. When you join our team, you become part of a dynamic and inclusive work environment where innovation and collaboration are celebrated.
Comprehensive Benefits Package
- Competitive salary: $110,000-$125,000 Salary Depending on Experience
- Health, dental, and vision insurance with Company-sponsored Life Insurance
- Retirement savings plan with company match
- Vacation time off, sick time off, and holidays
Career Development Opportunities
- Ongoing training and development programs
- Opportunities for advancement within the company
Work-Life Balance
- Flexible work schedules
- Remote first environment with companywide conferences annually
- Employee assistance program for personal and family well-being
Perks and Rewards
- Employee discounts on products and services through Insperity
- Recognition programs for outstanding performance
- Company-sponsored social events and activities
Join us and discover a rewarding career where you can make a difference and grow professionally.
REE is only able to hire US citizens or those who are authorized to work in the US as full time employees (we do not provide visa sponsorship).
This information is provided in compliance with Equal Pay Regulations across the US and is the company's good faith and reasonable estimate of the compensation range and benefits offered for this position. The compensation offered to the successful applicant may vary based on factors including experience, skills, education, location, and other job-related reasons.
REE Medical participates in E-verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.
Not open to 3rd party recruiters or submissions.
REE will never ask for personal information or to purchase anything during the interview process, only communications from a @reemedical.com domain are representative of REE Medical, LLC.
