OPCyberTalent is seeking a Sr. Manager, Cybersecurity Operations for our Health Care customer. The successful candidate will be tasked to lead and mature operational security programs across the healthcare enterprise. The focus will be on protecting electronic protected health information (ePHI), ensuring clinical continuity, and maintaining regulatory compliance (e.g., HIPAA, HITECH).

This role will work remotely from either Nashville, TN or Dallas, TX.

This position requires a blend of technical expertise, strategic thinking, and leadership skills to effectively secure enterprise environments. 

Responsibilities:

• Lead incident response, vulnerability management, penetration testing, and GRC.

• Guide multidisciplinary teams across IT and business units.

• Reduce risk in a highly regulated, mission-critical environment.

• Partner to lead the enterprise incident response (IR) program.

• Oversee 24/7 security monitoring and ensure robust playbooks and escalation protocols.

• Coordinate with stakeholders during high-severity events involving PHI.

• Direct the enterprise vulnerability management lifecycle.

• Integrate vulnerability intelligence with IT asset inventory, patching, and threat landscape.

• Address vulnerabilities in legacy systems and medical devices (IoMT).

• Manage penetration tests, red team exercises, and simulations.

• Translate technical findings into actionable risk narratives.

• Champion purple teaming to align offensive assessments with defensive capability.

• Maintain alignment with frameworks such as HIPAA, HITRUST, NIST CSF, and ISO 27001.

• Support audit activities, policy development, risk assessments, and compliance reporting.

• Contribute to vendor risk evaluations, focusing on PHI exposure and critical service dependencies.

• Build, mentor, and retain a high-performing cybersecurity operations team.

• Develop metrics and KPIs to measure the program and report on security posture.

• Drive maturity, emphasizing automation, threat-informed defense, and continuous improvement.

• Liaise with business continuity management to validate security practices for DRP and BCM testing and operations.

• Review security technologies and make recommendations based on security, financial, and operational metrics.

Qualifications:

• Bachelor’s degree in a relevant field (Master’s preferred).

• 10–15+ years of experience in cybersecurity, with 5+ years in architecture and leadership roles.

• Proven ability to build and lead security operations teams and incident response programs.

• Experience with IR frameworks, playbook development, and tabletop exercises.

• Ability to manage complex security incidents across on-prem, cloud, and hybrid environments.

• Strong understanding of the impacts of security breaches.

• Oversight of VM lifecycle and a strong grasp of CVSS, asset criticality, and threat context.

• Experience with vulnerability management platforms and integrating findings into ITSM workflows.

• Deep understanding of offensive security principles.

• Experience managing red teams and interpreting pentest findings.

• Knowledge of adversary simulation tools and security assessment methodologies.

• Experience coordinating purple team exercises.

• Solid understanding of regulatory frameworks.

• Experience with risk assessment methodologies and third-party/vendor risk management.

• Proven ability to align operations with policy and governance.

• Familiarity with security audits, SOC 2, HIPAA security rule, and compliance reporting.

• Strong people leadership and stakeholder management skills.

• Experience building KPIs and dashboards to measure program maturity and ROI.

• Excellent analytical, planning, organizational, technical, and communication skills.

• Comfortable with shift-based or on-call responsibilities.

• Displays intellectual curiosity, integrity, and motivation.

• Ability to work under pressure, prioritize, and partner with cross-functional teams.

#LI-JC2