Jobs via Dice ยท 2 days ago
IT Security Lead
United States
Full-time
Remote
Senior Level
5+ years expSmartwork IT Services is seeking an IT Security Lead who will oversee the design, implementation, validation, and sustainment of cybersecurity and data protection strategies for a Public Health System's Oracle Health EHR implementation. The role involves ensuring compliance with state and federal security standards while collaborating with technical partners and stakeholders.
Computer Software
Responsibilities
Security Architecture and Governance
Lead the development of a hybrid cloud security architecture leveraging Oracle Cloud Infrastructure (OCI) and State-managed data centers
Implement zero-trust architecture with least-privilege access, multi-factor authentication (MFA), and role-based access controls (RBAC)
Align all security controls with service agreements, NIST 800-53, and CIS benchmarks
Establish governance models for change control, incident response, and disaster recovery (DR) planning
Serve as the primary liaison to the Executive Steering Committee and state cybersecurity teams
Conduct structured risk assessments across technical, contractual, staffing, and hosting domains
Develop and maintain a risk register with mitigation strategies anchored in governance, monitoring, and contract safeguards
Lead vulnerability scanning, penetration testing, and firewall reviews across all environments
Ensure compliance with HIPAA, 42 CFR Part 2, FISMA, and other applicable regulations
Oversee the implementation of continuous monitoring, patching, and SOC (Security Operations Center) coordination
Design and implement IAM protocols across Oracle Health Millennium, RevElate, and integrated systems
Manage user provisioning, de-provisioning, and access audits across all care settings
Validate integration with Oracle IAM and state identity providers for seamless SSO and MFA
Define and validate SLAs for uptime, performance, RTO/RPO, and incident response
Coordinate DR testing with Oracle Health and state infrastructure teams
Develop and maintain playbooks for failover, downtime procedures, and recovery operations
Ensure that DR protocols are embedded in training and operational handoffs
Oversee secure ingestion and normalization of multi-source data (clinical, claims, operational) using Oracle Health Data Intelligence (HDI)
Validate HL7/FHIR interface security, including encryption, authentication, and audit logging
Implement secure APIs and data exchange frameworks for interoperability with federal and state systems
Provide 24/7 monitoring, quarterly health checks, and proactive performance tuning
Lead continuous modernization efforts leveraging OCI's roadmap (AI, automation, new security services)
Ensure alignment with ITIL service management practices and state governance
Qualification
Required
Bachelors degree
Minimum 5 years of experience in IT security leadership in healthcare or public sector environments
Proven success in securing large-scale EHR implementations, preferably Oracle Health Millennium and RevElate
Deep understanding of HIPAA, NIST, FISMA, and state-specific cybersecurity frameworks
Experience with IAM, SOC operations, vulnerability management, and DR planning
Familiarity with HL7/FHIR, OCI, and secure data integration practices
Excellent communication, stakeholder engagement, and documentation skills
Preferred
Certifications in CISSP, CISM, CISA, or equivalent
Experience with federal/state EHR implementations
Familiarity with Oracle Health s security architecture and OCI observability tools
Experience managing security in multi-entity, multi-specialty environments
Company
Jobs via Dice
Welcome to Jobs via Dice, the go-to destination for discovering the tech jobs you want.
0-1 employees
Funding
Current Stage
Early StageCompany data provided by crunchbase