Manager, IT Security
Job Summary
The Manager, IT Security reports to the IT Operations and Security leader, and will work closely with the IT Operations leadership, IT department, and business-at-large to ensure the successful delivery and operations of critical security controls across a heterogeneous corporate/Centers multi-site computing environment. This position will play a critical role in providing strategic guidance, expertise, and leadership in managing and optimizing the security operations of the organization. The IT Security Manager will be responsible for supporting and aligning the day-to-day activities, ensuring the smooth functioning of IT security systems, and driving continuous improvement efforts to enhance operational efficiency and effectiveness while hardening our environment from known and yet discovered threats. As such, you will have the opportunity to make a significant impact by driving security-oriented operational excellence, fostering innovation, and ensuring the delivery of high-quality IT security services. Your expertise and skills will contribute to the overall success of the organization's technology operations, enabling efficient and reliable IT systems to support business objectives while adhering to IT and security compliance policies and procedures.
The Manager will likewise have opportunities for involvement in security-related IT projects and center technology deployments and initiatives.
Duties/Responsibilities
- Security, risk, and vulnerability management, including identifying, assessing, and mitigating risks to ArchWell Health’s enterprise assets: endpoint, mobile, network, server, virtual, etc. Assist in our vulnerability lifecycle management.
- Asset security and inventory, ensure all assets are compliant with all standards and policies, some examples: Azure-joined, connected, secured, patched, monitored, evaluated for compliance or security issues, escalations.
- Review, improve, or establish information technology and security policies for the organization under the guidance of the IT Operations leader, manage these policies in conjunction with IT Security Analyst(s), Compliance, and other teams as needed, including annual review exercises and attestations.
- Ensure data is protected at rest and in transit while ensuring and enforcing network security. Strong partnership with our internal and external telephony and networking teams is a must. Having experience in these dynamic cross-team real world scenarios will further empower a candidate in this role.
- Manage user identities and access to resources utilizing established best practices, adopting and understanding our current technology and solutions. Assess and provide meaningful feedback for continuously improving the security, efficiency and effectiveness of IAM and onboarding/offboarding processes.
- Assume the lead of our SOC on a day-to-day basis and all that that entails.
- Review, understand, design, and implement security architecture and controls under the guidance of IT leadership, while partnering with various teams to ensure product/development cycles are accounted for across the broad Information Technology and Clinical departments.
- Collaborate with IT operations leadership to maintain, develop, improve, and implement IT operational security strategies and lifecycles aligned with organizational goals. Assess current, configurations, systems, solutions, etc. and identify areas for improvement.
- Oversee the configuration, operation, support, and maintenance of IT security systems and solutions. Understand the business and technical footprint, our approaches to security, automation, and technology solutions to ensure a secure and harmonious solution stack.
- Ensure availability, reliability, and security of systems, and address any technical issues or disruptions in a timely manner.
- Monitor key performance indicators (KPIs) and implement metrics-driven approaches to measure and improve operational performance.
- Participate in support, collaboration, partnership, and to some degreein managing, strategic trade partner and vendor relations, both for established and new. Collaborate with procurement team and reseller partners where required to negotiate contracts, monitor service level agreements (SLAs), and ensure compliance with agreed-upon terms and conditions.
- Act as main point of contact for our external penetration testing partner and directly responsible for coordinating the annual testing.
- Own security domain applications administration and maintenance.
- Program manage certain security processes, applications, and/or workstreams to support IT, IS, and the broader organization where appropriate.
- Coordinate IT security initiatives. May include performing diligence, research, proof-of-concept, testing, and other similar needs for the information technology or security group.
- Rationalize new security domain requests and flow them to internal and external parties utilizing concepts and approach developed and taught by IT Operations leadership.
- Perform troubleshooting. Possess a deep understanding of hardware, software, and networking, quickly identify problems, analyze root causes, and work with technical SMEs to develop and implement effective resolution plans and solutions.
- Willingness to travel up to 20%. If remote, quarterly visits to HQ in Nashville, TN, and in-market center visits.
- Other tasks and duties required by the position.
List of Solutions (SME knowledge) and required Skills
- Microsoft 365, Azure, Entra, Office, Sentinel, Defender, Score, Azure Virtual Desktop.
- Must possess a strong knowledge of:
- Microsoft licensing model and the security services, addons, etc. that go with each license type.
- Conditional Access Policies.
- Groups: Security, Exchange, Entra, SharePoint, 365, etc. – understand the differences in group types, how they are to be used properly , methodologies and approaches, enterprise minded thinking – access, automation, etc.
- Authentication – Authenticator, MFA, etc.
- Must possess a strong knowledge of:
- Meraki SD WAN
- Cisco ASA
- Automox, Application Patching (knowledge and awareness, not an admin)
- Understand our internal, and our MSSPs’ external incident playbooks, and possess knowledge and experience of having already lived through critical and high real-time incident response drills.
- In-depth knowledge of ITIL frameworks, industry best practices, and emerging trends in security and technology operations.
- Strong leadership skills with the ability to inspire and motivate teams towards achieving operational excellence.
- Proficiency in assessing and managing IT risks, implementing security measures, and ensuring compliance with relevant regulations and standards.
- Highly motivated and possesses excellent problem-solving and analytical skills, with the ability to identify and resolve complex technical issues.
- Effective communication and interpersonal skills, with the ability to build relationships, influence stakeholders, and communicate technical concepts to a non-technical audience.
- Strong grasp of IT technology and security fundamentals and a matching ability to troubleshoot broadly.
- Solid understanding of common Windows platforms including Windows 10.
- Technical and functional documentation skills are essential.
Education and Experience:
- Bachelor’s degree in computer science, Information Technology, or a related field preferred.
- Relevant certifications such as ITIL, PMP, CISSP, or similar credentials are highly desirable.
- Proven experience (7+ years) in IT operations management, including hands-on experience with infrastructure, networking, systems administration, and security
- 5+ years’ experience in IT project management, Smartsheet experience is preferred. Using Smartsheet is required for this role.
- 5+ years’ experience working in predominantly Microsoft Windows and Microsoft 365 based environments.
- 2+ years’ Experience working within Microsoft Azure, 365, Entra (formerly “Intune”), Purview (Compliance), and Defender portals / dashboards.
- Experience with application inventory and management, strong grasp of core concepts.
- Experience with Adobe products and administration is preferred, will be trained as part of this job.
- Experience with Apple Business Manager and administration is preferred, will be trained as part of this job.
- Experience with endpoint imaging, software/deployment packaging, and device provisioning automation, strong grasp of core concepts.
- Experience with Cloud, on-premises, and virtual computing, strong grasp of core concepts.
- Experience with SQL Server, Windows Server, Active Directory, IAM, strong grasp of core concepts.
- Experience with networking technologies (DNS, DHCP), multi-site, LAN/WAN topology, security alignment, strong grasp of core concepts.
- Experience working in a fast-paced environment with multiple projects and efforts.
About ArchWell Health:
At ArchWell Health, we’re creating a community of caring designed to help our members stay healthy and engaged. By focusing on a strong provider-patient relationship, routine wellness, and staying active, our members enjoy a higher level of care and better quality of life after the age of 60. Everything we do is for seniors. We believe seniors should be heard, listened to, and given ample time by their physicians to live well later in life.
Our value-based care model is designed to prevent illnesses while keeping members healthy and happy in every aspect of their life. We deliver best-in-class primary care at comfortable, accessible neighborhood centers where older adults can feel at home and become part of a vibrant, wellness-focused community. We’re passionate about caring for older adults and united by the belief that caring has the power to change everything for our members.
ArchWell Health is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to their race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected classification.
Other details
- Job Family IT
- Pay Type Salary