<div class="content-intro"><p><span data-contrast="auto">At Habitat Health, we envision a world where older adults experience an independent and joyful aging journey in the comfort of their homes, enabled by access to comprehensive health care. Habitat Health provides personalized, coordinated clinical and social care as well as health plan coverage through the Program of All-Inclusive Care for the Elderly (βPACEβ) in collaboration with our leading healthcare partners, including Kaiser Permanente.</span><span data-ccp-props="{"134233117":false,"134233118":false,"335551550":0,"335551620":0,"335557856":16777215,"335559738":0,"335559739":0}"> </span></p><p><span data-contrast="none">Habitat Health offers a fully integrated experience that brings more good days and a sense of belonging to participants and their caregivers. We build engaged, fulfilled care teams to deliver personalized care in our centers and in the home. And we support our partners with scalable solutions to meet the health care needs and costs of aging populations.</span> <br> <br><span data-contrast="none">Habitat Health is growing, and weβre looking for new team members who wish to join our mission of redefining aging in place. To learn more, visit </span><a href="https://www.habitathealth.com/"><span data-contrast="none"><span data-ccp-charstyle="Hyperlink">https://www.habitathealth.com</span></span></a><span data-contrast="none">.</span><span data-ccp-props="{"134233117":false,"134233118":false,"335551550":0,"335551620":0,"335557856":16777215,"335559738":0,"335559739":0}"> </span></p></div><p><strong><span data-contrast="none">Role Scope</span></strong><span data-contrast="none">:</span><span data-ccp-props="{"335559738":200,"335559739":200}"> </span></p><p><span data-contrast="auto">We are looking for a qualified, hands-on Information Security Manager to design, implement, and operate the information security program for our growing healthcare organization operating under the PACE model. </span><span data-contrast="auto"> </span><span data-contrast="auto">This role blends strategic security leadership with practical execution. The ideal candidate can translate high regulatory and partner security standards into right-sized, pragmatic controls, while building sustainable governance, oversight, and audit processes.</span><span data-ccp-props="{"335559738":200,"335559739":200}"> </span></p><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="1" data-aria-level="1"><span data-contrast="auto">Deploy HIPAA aligned best practice security architecture across our Microsoft 365 environment and Meraki based WAN.</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":1440,"335559991":360,"469769242":[9675],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="1" data-aria-level="2"><span data-contrast="auto">Define, implement, and maintain administrative, technical, and physical security controls appropriate for a PACE organization</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":1440,"335559991":360,"469769242":[9675],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="2" data-aria-level="2"><span data-contrast="auto">Own security design decisions and control selection, balancing risk, regulatory requirements, and operational realities</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="2" data-aria-level="1"><span data-contrast="auto">Security monitoring and incident response: configure and monitor tools, logs, and alerts, analyze activity, and investigate potential security incidents</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":1440,"335559991":360,"469769242":[9675],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="1" data-aria-level="2"><span data-contrast="auto">Serve as primary security escalation point for internal teams and external partners</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":1440,"335559991":360,"469769242":[9675],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="2" data-aria-level="2"><span data-contrast="auto">Lead incident response planning, tabletop exercises, post-incident reviews, and remediation tracking</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="3" data-aria-level="1"><span data-contrast="auto">Perform vulnerability management activities, based on internal and external scans, and coordinate remediation activities</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":1440,"335559991":360,"469769242":[9675],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="1" data-aria-level="2"><span data-contrast="auto">Maintain an enterprise security risk register, including risk scoring, mitigation plans, and executive-level reporting</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":1440,"335559991":360,"469769242":[9675],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="2" data-aria-level="2"><span data-contrast="auto">Support business continuity and disaster recovery security requirements in partnership with IT and Operations</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="4" data-aria-level="1"><span data-contrast="auto">Lead Access and Identify management, developing best practice procedures, and enabling others to work within these processes</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":1440,"335559991":360,"469769242":[9675],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="1" data-aria-level="2"><span data-contrast="auto">Oversee privileged access, role-based access controls, joiner/mover/leaver processes, and periodic access reviews</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":1440,"335559991":360,"469769242":[9675],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="2" data-aria-level="2"><span data-contrast="auto">Ensure appropriate data protection controls for PHI, including encryption, logging, and monitoring</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="5" data-aria-level="1"><span data-contrast="auto">Draft, maintain, and enforce security policies, standards, and procedures aligned to HIPAA, NIST, and partner requirement</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":1440,"335559991":360,"469769242":[9675],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="1" data-aria-level="2"><span data-contrast="auto">Design and operate recurring security oversight and audit processes, including evidence collection and remediation tracking</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":1440,"335559991":360,"469769242":[9675],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="2" data-aria-level="2"><span data-contrast="auto">Lead and coordinate internal and external security audits, assessments, and partner security reviews</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="6" data-aria-level="1"><span data-contrast="auto">Establish and manage a third-party security and risk management program, including vendor risk assessments and ongoing monitoring</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="7" data-aria-level="1"><span data-contrast="auto">Partner closely with IT, Compliance, Legal, Clinical, and Operations teams to embed security into daily workflows.</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><p><strong><span data-contrast="auto">Qualifications: </span></strong><span data-ccp-props="{"335559738":200,"335559739":200}"> </span></p><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="8" data-aria-level="1"><span data-contrast="auto">Bachelorβs degree in Computer Science with an emphasis on Information Security, or equivalent experience</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="9" data-aria-level="1"><span data-contrast="auto">7+ years of progressive experience in information security or cybersecurity roles, including hands-on implementation</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="10" data-aria-level="1"><span data-contrast="auto">3β5 years of experience owning or leading security programs, controls, or governance functions</span><span data-contrast="auto"> including hands</span><span data-contrast="auto">β</span><span data-contrast="auto">on experience in implementing information security best practices, and experience with security monitoring, incident response, or vulnerability management.</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="11" data-aria-level="1"><span data-contrast="auto">Practical experience in a Health Care organization, and expertise in industry regulatory and standards frameworks (HIPAA, NIST, etc)</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="12" data-aria-level="1"><span data-contrast="auto">Experience in cloud based environments, specifically Microsoft 365. </span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="13" data-aria-level="1"><span data-contrast="auto">Experience in networking concepts, operating systems, and cloud environments</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="14" data-aria-level="1"><span data-contrast="auto">Familiarity with regulatory and standards frameworks (HIPAA, NIST, etc.).</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="15" data-aria-level="1"><span data-contrast="auto">Strong analytical and problem</span><span data-contrast="auto">β</span><span data-contrast="auto">solving skills with attention to detail.</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="16" data-aria-level="1"><span data-contrast="auto">Ability to lead through influence.</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="17" data-aria-level="1"><span data-contrast="auto">Ability to communicate complex issues clearly to technical and non</span><span data-contrast="auto">β</span><span data-contrast="auto">technical audiences.</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="18" data-aria-level="1"><span data-contrast="auto">Ability to travel up to 2 weeks per quarter.</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><p><span data-ccp-props="{"134245417":false,"201341983":0,"335559739":200,"335559740":312}"> </span></p><p><strong><span data-contrast="auto">Nice to haves </span></strong><span data-ccp-props="{"134245417":false,"201341983":0,"335559739":200,"335559740":312}"> </span></p><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="19" data-aria-level="1"><span data-contrast="auto">Experience in a start up organization.</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="20" data-aria-level="1"><span data-contrast="auto">Experience supporting audits, partner security assessments, or SOC/HIPAA readiness efforts.</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="21" data-aria-level="1"><span data-contrast="auto">Experience in creating technology solutions based on business requirements</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="22" data-aria-level="1"><span data-contrast="auto">Experience working remotely β this is a remote position. </span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="23" data-aria-level="1"><span data-contrast="auto">Professional certifications such as CISSP, CISM, CISA, or Security+ (preferred, not required)</span><span data-contrast="auto"> </span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="24" data-aria-level="1"><span data-contrast="auto">A strong connection to the mission of our business</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><ul><li data-leveltext="β" data-font="Poppins" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769242":[8226],"469777803":"left","469777804":"β","469777815":"multilevel"}" data-aria-posinset="25" data-aria-level="1"><span data-contrast="auto">Experience working with technology managed service providers</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":240}"> </span></li></ul><p><strong><span data-contrast="auto">Compensation: </span></strong><span data-ccp-props="{"335559738":200,"335559739":200}"> </span></p><p><span data-contrast="none">We take into account an individualβs qualifications, skillset, and experience in determining final salary. This role is eligible for medical/dental/vision insurance, paid parental leave (birthing and non-birthing parents), short and long-term disability, life insurance, flexible spending accounts, 401(k) savings, paid time off, and company-paid holidays. The expected salary range for this position is</span><span data-contrast="none"> $133,000 - $157,000.</span><span data-contrast="none"> The actual offer will be at the companyβs sole discretion and determined by relevant business considerations, including the final candidateβs qualifications, years of experience, skillset, and geographic location.</span><span data-ccp-props="{"134245417":false,"201341983":0,"335559740":312}"> </span></p><p><strong><span data-contrast="none">Vaccination Policy, including COVID-19</span></strong><span data-ccp-props="{"335559738":200,"335559739":200}"> </span></p><p><span data-contrast="none">At Habitat Health, we aim to provide safe and high-quality care to our participants. To achieve this, please note that we have vaccination policies to keep both our team members and participants safe. For covid and flu, we require either proof of vaccination or declination form and required masking while in participant locations as a safe as and essential requirement of this role. Requests for reasonable accommodations due to an applicantβs disability or sincerely held religious beliefs will be considered and may be granted based upon review. We also require that team members adhere to all infection control, PPE standards and vaccination requirements related to specific roles and locations as a condition of employment.</span><span data-ccp-props="{"335559738":200,"335559739":200}"> </span></p><p><strong><span data-contrast="auto">Our Commitment to Diversity, Equity, and Inclusion</span></strong><span data-contrast="auto">:</span><span data-ccp-props="{"335559738":200,"335559739":200}"> </span></p><p><span data-contrast="auto">Habitat Health is an Equal Opportunity employer and is committed to creating a diverse and inclusive workplace. Habitat Health applicants are considered solely based on their qualifications, without regard to race, color, religion, creed, sex, gender (including pregnancy, childbirth, breastfeeding or related medical conditions), gender identity, gender expression, sexual orientation, marital status, military or veteran status, age, national origin, ancestry, citizenship, physical or mental disability, medical condition, genetic information or characteristics (or those of a family member), or other status protected by applicable law.</span><span data-ccp-props="{"335559738":200,"335559739":200}"> </span></p><p><span data-ccp-props="{"335559738":200,"335559739":200}"> </span></p><p><span data-contrast="auto">Habitat Health is committed to the full inclusion of all qualified individuals. In keeping with our commitment, Habitat Health will take steps to provide people with disabilities and sincerely held religious beliefs with reasonable accommodations in accordance with applicable law. Accordingly, if you require a reasonable accommodation to fully participate in the job application or interview process, to perform the essential functions of the position, and/or to receive all other benefits and privileges of employment, please contact us at careers@habitathealth.com.</span><span data-ccp-props="{"335559738":200,"335559739":200}"> </span></p><p><strong><span data-contrast="auto">Beware of Scams and Fraud</span></strong><span data-ccp-props="{"335559738":200,"335559739":200}"> </span></p><p><span data-contrast="auto">Please ensure your application is being submitted through a Habitat Health sponsored site only. Our emails will come from @habitathealth.com email addresses. If you feel that you have been the victim of a scam such as this, please report the incident to the Federal Trade Commission by selecting the βRip-offs and Imposter Scamsβ option: https://reportfraud.ftc.gov/#/.</span><span data-ccp-props="{"335559738":200,"335559739":200}"> </span></p>