Senior Security Manager, Data Protection

As the Senior Security Manager for Data Protection at Aledade, you will lead a highly technical team focused on safeguarding patient and employee data, including PHI and PII. You will be responsible for building a comprehensive data protection program, establishing secure access processes, and collaborating with cross-functional teams to ensure end-to-end data lifecycle protections. This role involves driving technical solutions, setting clear goals, and working to reduce security risks within the organization.

Must Have

• Lead and nurture a high-performing security team
• Drive technical solutions and roadmaps for security risk management
• Collaborate with cross-functional stakeholders
• BS/higher in Computer Science, Cybersecurity, Engineering, or equivalent
• 10+ years in designing, building, or operating data protection services
• 3+ years in cybersecurity engineering
• 3+ years with AWS, GCP, Azure, or other cloud services

Good to Have

• Knowledge of securing PHI data in healthcare organizations
• Experience attracting, hiring, and coaching world-class engineers
• Experience taking ownership of technology decisions and empowering team members
• Ability to break down ambiguous/complex problems into detailed solutions
• Experience communicating analysis and building confidence with diverse audiences
• Strong communication and relationship-building skills, influencing stakeholders
• Experience managing and supervising Sr Data Security Engineers
• Experience developing and managing data protection programs (discovery, inventory, risk assessments, encryption)
• Proficiency in secure configuration, troubleshooting, and system hardening
• Proven experience with data discovery, classification, handling, access, inventory, and retention
• Proven experience with data protection technologies (security posture management, encryption, tokenization, DLP, data masking/anonymization)
• Experience securing ML, SaaS, or data-focused platforms (e.g., Tableau, Salesforce, AWS, Databricks)
• Proficiency in SaaS Data Security, secure cloud architecture design, cloud data protection mechanisms, and cloud IAM
• Experience with cloud native application development and security models (AWS, Azure)
• Programming and Scripting Experience (Python, PowerShell, Shell Scripting, Ruby, Go)
• Experience with data protection and governance technologies (Data Discovery, Data Inventory/Catalogs, Certificate and Key Management, Database Encryption, Database Activity Monitoring)
• Strong analytical and problem-solving skills
• Strong data modeling and data governance skills
• Excellent communication for effective stakeholder engagement
• Ability to excel in fast-paced, startup-like environments

Perks & Benefits

• Flexible work schedules
• Ability to work remotely (for many roles)
• Health, dental and vision insurance (up to 80% paid for employees, dependents, domestic partners)
• Robust time-off plan (21 days of PTO in first year)
• Two paid volunteer days
• 11 paid holidays
• 12 weeks paid parental leave for all new parents
• Six weeks paid sabbatical after six years of service
• Educational Assistant Program
• Clinical Employee Reimbursement Program
• 401(k) with up to 4% match
• Stock options

As the Senior Security Manager for Data Protection, you will lead by being a highly technical leader who delivers high business impact on projects of increasing dependencies and ambiguity.

You will lead a team of individual contributors focused on protecting patients, our employees, and Aledade as a whole. You will build a comprehensive program and processes to enable secure access to Aledade’s data, including PHI, PII etc. You will work with cross-functional stakeholders and teams to establish design and implementation guidance and standards and manage project to completion for assuming the end to end data lifecycle protections.

At Aledade, we empower primary care physicians with technology to keep their patients healthy, preventing unnecessary hospitalizations.

Primary Duties

• Build a high performing team by hiring and nurturing security talent.
• Strong technical leadership - drive technical solutioning and building roadmaps to reduce or manage security risk.
• Set aggressive and clear goals and remove all roadblocks for the team to achieve them.
• Working seamlessly and collaboratively with stakeholders across Aledade to achieve business outcomes.
• Work closely with other leaders to drive excellence in our processes and systems.

Minimum Qualifications

• BS (or higher) in Computer Science, Cybersecurity, Engineering, or equivalent experience
• 10+ years of experience in designing, building, or operating data protection services
• 3+ years of experience in cybersecurity engineering
• 3+ years of experience with AWS, GCP, Azure, or another cloud service

Preferred KSA’s

• Prior experience or extensive knowledge of securing PHI data in a healthcare organization required.
• You have experience in attracting, hiring, and coaching world-class engineers including performance management
• You have experience in taking ownership of the technology decisions, while delegating and empowering team members.
• You enjoy breakdowning down ambiguous and/or complex problems and creating detailed, high-quality solutions and design deliverables
• You have experience communicating analysis and establishing confidence among audiences who do not share your disciplinary background or training.
• You have strong communication and relationship building skills, with experience influencing and aligning multiple stakeholders

Domain Specific KSA's

Data Security

• Experience in managing and supervising other Sr Data Security Engineers
• Experience in developing and managing data protection programs focused on data discovery, data inventory, data risk assessments, and encryption for enterprise environments
• Proficiency in secure configuration, troubleshooting, and system hardening
• Proven experience with data discovery, classification, handling, access, inventory, and retention
• Proven experience with data protection technologies (security posture management cloud or data, encryption, tokenization, data loss prevention tools and data masking/anonymization techniques)
• Experience securing an ML, SaaS, or other data-focused platforms (ex. Tableau, Salesforce, AWS, or Databricks)
• Proficiency in SaaS Data Security, knowledge of secure cloud architecture design, cloud data protection mechanisms, and cloud identity and access management (IAM).
• Experience with cloud native application development and security models, particularly in AWS or Azure.
• Programming and Scripting Experience ( Python, PowerShell, Shell Scripting, Ruby, Go).
• Experience with data protection and governance technologies, e.g., Data Discovery, Data Inventory/Catalogs, Certificate and Key Management, Database Encryption, and Database Activity Monitoring.

Core Compentencies

• Strong analytical and problem-solving skills
• Strong data modeling skills and data governance skills
• Excellent communication for effective stakeholder engagement
• Ability to breakdown complex problems and create detailed, high-quality solutions and design deliverables
• Ability to excel in fast-paced, startup-like environments

Physical Requirements

• Sitting for prolonged periods of time. Extensive use of computers and keyboard. Occasional walking and lifting may be required.

Who We Are:

Aledade, a public benefit corporation, exists to empower the most transformational part of our health care landscape - independent primary care. We were founded in 2014, and since then, we've become the largest network of independent primary care in the country - helping practices, health centers and clinics deliver better care to their patients and thrive in value-based care. Additionally, by creating value-based contracts across a wide variety of health plans, we aim to flip the script on the traditional fee-for-service model. Our work strengthens continuity of care, aligns incentives and ensures primary care physicians are paid for what they do best - keeping patients healthy. If you want to help create a health care system that is good for patients, good for practices and good for society - and if you're eager to join a collaborative, inclusive and remote-first culture - you've come to the right place.

What Does This Mean for You?

At Aledade, you will be part of a creative culture that is driven by a passion for tackling complex issues with respect, open-mindedness and a desire to learn. You will collaborate with team members who bring a wide range of experiences, interests, backgrounds, beliefs and achievements to their work - and who are all united by a shared passion for public health and a commitment to the Aledade mission.

In addition to time off to support work-life balance and enjoyment, we offer the following comprehensive benefits package designed for the overall well-being of our team members:

• Flexible work schedules and the ability to work remotely are available for many roles
• Health, dental and vision insurance paid up to 80% for employees, dependents and domestic partners
• Robust time-off plan (21 days of PTO in your first year)
• Two paid volunteer days and 11 paid holidays
• 12 weeks paid parental leave for all new parents
• Six weeks paid sabbatical after six years of service
• Educational Assistant Program and Clinical Employee Reimbursement Program
• 401(k) with up to 4% match
• Stock options
• And much more!