Senior Manager, Information Security Officer

Описание вакансии

About Paytient:

We’re on a mission to help people better access and afford care.

Every day, millions of people, and their loved ones, need to see a doctor. For most of us, that moment is an uncertain one - we’re unsure of what’s wrong, who to go to, how long it’ll take to be seen, when we’ll feel better, and what it’ll cost.

Paytient partners with thoughtful employers and health plans who understand the impact of that moment and want to ensure that every one of their plan members are easily able to access and afford care. Our clients understand that an improved ability to self-pay for care changes patient behavior and creates value for the health plan.  This founding belief is becoming an emerging standard of care in health plan design and is now, in fact, a mandatory capability in some governmental health plans. Founded in 2018, Paytient is now part of nearly 6,000 employer health plans and providing certainty that people are better able to access and afford care.

We’re looking for passionate, collaborative builders to join our team and help us create a future where everyone can more easily access and afford care.

About the Role

This is a hands-on role for a highly motivated and experienced Information Security Officer. In this quickly developing organization, you will be a strong team player who can independently drive key security initiatives as the information security department matures. This role requires a blend of technical expertise and managerial experience — you'll have a deep understanding of information security, be comfortable working cross-functionally with internal teams and external vendors, and bring recognized credentials to back it up. You'll be instrumental in developing and maintaining our security posture, aligning technical capabilities with business needs, and ensuring compliance with a range of industry standards. We operate on a "remote with roots" model, meaning you can work where you thrive with the ability to gather as needed at our home office in Columbia, Missouri. Open to candidates anywhere in the continental U.S., except Montana.

What You'll Do

• Develop and implement security policies, standards, and procedures in collaboration with relevant teams to protect organizational data and systems.
• Document data architecture, integrations, and security controls, ensuring ongoing maintenance and adherence to security best practices.
• Manage and lead an Information Security team, partnering with key stakeholders across IT, Technology, and the broader business.
• Continuously analyze and anticipate enterprise-wide security needs, including threat detection, incident response, and capacity planning.
• Manage organizational security tools, including zero-trust access tools, to support secure authentication (e.g., SSO, OAuth) and access control across all applications.
• Oversee MDM suite management across Windows, Mac, and mobile devices, including inventory management, software deployment, and endpoint security policies.
• Conduct ongoing analysis of security processes, technologies, and vendors to identify and implement improvements that strengthen our security posture.
• Monitor vendors to ensure they meet security requirements through Third Party Risk Reviews and other relevant processes.
• Develop and deliver security training for employees to promote a security-aware culture.
• Document support models for endpoints, cloud assets, mobile devices, and SaaS applications (e.g., Okta, Google Workspace), with a focus on secure configuration and maintenance.
• Prepare cost-benefit analyses for security upgrades and new technologies.
• Ensure security measures and technical capabilities align with audit and compliance standards, including SOC2, NIST, and HiTrust CSF, and lead or support HiTrust certification and renewal efforts.
• Follow standards set for the Information Security Officer role as outlined in NIST 800-53.
• Efficiently manage security software and hardware inventory, including licensing and cost management.

What You'll Bring

• At least three years of experience in a dedicated information security role, with strong emphasis on endpoint management in a zero-trust environment.
• CISSP certification (highly preferred) or equivalent advanced security certification with a clear path to CISSP.
• Demonstrated experience with HiTrust CSF, including participation in assessments, gap remediation, or certification efforts.
• A proven track record of troubleshooting, documentation, and managing information security policies and best practices.
• Strong practical knowledge of scripting, programming, encryption, and digital security.
• In-depth understanding of network architecture and security principles, including cloud-based security (e.g., cloud access security brokers, firewalls, and security monitoring).
• Expertise in SaaS application operations, integrations, and secure onboarding, particularly with platforms like Google Workspace.
• Experience with security frameworks and compliance standards, including ITIL, SOC2, NIST SP 800-171, HiTrust CSF, PCI, and HIPAA.
• Excellent communication, interpersonal, and leadership skills, with the ability to manage conflict and provide effective guidance.
• Strong problem-solving, critical thinking, and decision-making abilities.
• Solid project management skills, including organization, planning, time management, and prioritization.
• Excellent attention to detail and a customer service mindset.

Why You’ll Love Working at Paytient

We believe health care access should never be a source of stress or hardship—and we’re building tools to make that belief a reality. Join a mission-driven team with competitive benefits, flexible work, and a culture rooted in trust, autonomy, and impact.

Benefits We Offer for Full-Time Roles:

• Medical, dental and vision insurance
• $4,400 annual HSA contribution
• Paytient Health Payment Account (HPA)
• Monthly lifestyle spending stipend
• Five weeks of annual PTO
• Week-long fully paid 'summer break' for all employees!
• Ten weeks of bonding leave for new parents
• Two weeks of caregiver leave
• Employer paid short-term and long-term disability
• 401k plan access with a 4% employer match
• Stock options in Paytient
• ...and more!

Paytient is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

⚠️ Important Notice ⚠️ Please note that all official Paytient recruiting emails come from @paytient.com. If you receive emails from any domain other than @paytient.com, do not respond and report it to us immediately.