CrawlJobs Logo
Premium Health Logo Premium Health · IT - Administration

It Security & Compliance Lead (Healthcare) - Administration

United States, Brooklyn · Job Posted May 29, 2026
Apply Position
Job Link Share

Job Description

Premium Health’s Information Technology (IT) department is based in our Administration office and is responsible for managing and maintaining the entire infrastructure of multiple health practices across Brooklyn. The IT department is a team that is projected to grow as the organization does and is lead by our Chief Digitial Information Officer. We are seeking a hands-on IT Security & Compliance Lead to own and operate the organization’s security, risk, and compliance program across a multi-site ambulatory healthcare environment. This role is responsible for day-to-day execution of security controls, HIPAA compliance, audit readiness, vendor risk management, and AI governance, ensuring systems and data are protected while enabling efficient clinical and operational workflows. The role serves as the internal owner of security programexecution, working closely with IT, clinical applications, data, andoperational teams, as well as external partners. The role will also establish and managepractical AI governance, enabling safe and effective use of emerging AI toolsacross the organization. This individual will help define and execute a practicalsecurity roadmap to continuously mature the organization’s security controls,operational practices, and risk management capabilities, aligned to healthcareregulatory requirements and industry-standard frameworks such as NIST. Success in this role requires a balance of operationalexecution, hands-on security administration, cross-functional collaboration,and pragmatic risk management while supporting a rapidly evolving healthcareenvironment.

Job Responsibility

  • Own and operate the organization's security program, ensuring policies, procedures, and controls are consistently implemented
  • Maintain and update security policies, standards, and procedures
  • Ensure alignment with regulatory and organizational requirements
  • Support ongoing maturation of the organization's security posture and controls framework, including alignment with industry-standard practices such as NIST
  • Stay current on emerging cybersecurity threats, vulnerabilities, technologies, AI-related risks, and evolving industry best practices
  • Administer and support security technologies and operational controls across the environment, including email security, endpoint protection, identity and access management, MFA, conditional access, DLP, and firewall/security platforms
  • Configure, tune, monitor, and maintain security rules, alerts, policies, and protections across Microsoft 365, SaaS, endpoint, and network security platforms
  • Support email security administration, including phishing protection, impersonation protection, quarantine management, and coordination of SPF/DKIM/DMARC-related controls
  • Coordinate and manage phishing simulations, user remediation, and security awareness follow-up activities
  • Support SaaS application governance and review of third-party application access, permissions, and security risks
  • Partner with outsourced SOC/EDR providers to investigate alerts, validate remediation actions, and continuously improve detection and response capabilities
  • Lead HIPAA compliance efforts, including risk assessments and remediation tracking
  • Coordinate internal and external audits, ensuring documentation and evidence are maintained continuously
  • Monitor compliance with security policies and regulatory requirements
  • Ensure controls are functioning and documented (not just defined)
  • Own vendor security review process
  • Ensure BAAs and security requirements are in place and tracked
  • Maintain vendor inventory and risk classification
  • Oversee user access controls, including onboarding, offboarding, and role-based access controls
  • Lead periodic access reviews across key systems
  • Ensure least-privilege access and proper audit trails
  • Serve as the internal point of contact for security incidents, coordinating response with outsourced SOC/EDR providers
  • Define and maintain incident response processes and escalation paths
  • Track and ensure follow-up on security alerts and incidents
  • Establish and maintain practical AI governance guidelines, including acceptable use of tools such as ChatGPT and Microsoft Copilot
  • Define guardrails for responsible use of AI, including PHI protection and data handling
  • Support evaluation of AI-enabled tools and vendors
  • Partner with IT and operational teams to enable safe adoption
  • Support security awareness initiatives, including phishing simulations and staff education
  • Provide guidance on secure use of systems, data, and AI tools
  • Partner with IT, Clinical Applications, Data, and Operations teams to ensure security practices align with workflows and business needs
  • Provide regular reporting on security posture, risks, and compliance status to leadership
  • Identify opportunities to improve processes, reduce risk, and strengthen controls

Requirements

  • 5+ years of experience in IT security, compliance, or risk management
  • Experience in healthcare or regulated environments (HIPAA strongly preferred)
  • Experience managing or supporting security programs, audits, and compliance initiatives
  • Strong understanding of identity and access management, vendor risk, and security controls
  • Ability to work cross-functionally and translate security requirements into practical processes
  • Hands-on experience administering or supporting security technologies and operational controls, including areas such as identity and access management, endpoint protection, email security, MFA/conditional access, DLP, or SaaS security administration

Nice to have

  • Experience working with SaaS-heavy environments and third-party vendors
  • Experience working with Microsoft 365 security technologies, endpoint protection, email security, SIEM, DLP, conditional access, or related security platforms
  • Experience developing or supporting security policies and governance frameworks
  • Familiarity with NIST, CIS Controls, or similar frameworks
  • Exposure to AI tools and interest in emerging technology governance

What we offer

  • Paid time Off
  • Medical
  • Dental and Vision plans
  • Retirement plans
  • Public Service Loan Forgiveness (PSLF)
Premium Health - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

It Security & Compliance Lead (Healthcare) - Administration

8 matching positions

IT PACS Sr Systems Administrator

As an IT PACS Sr. Systems Administrator, you will be a lead technical expert, re...
Location
Location
United States , Lexington
Salary
Salary:
44.18 - 65.71 USD / Hour
americannursingcare.com Logo
American Nursing Care
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelors Other or equivalent job experience in Medical Imaging related field, computer science, Health Informatics, clinical imaging technology, upon hire
  • 7+ years of experience in PACS Administration including hands-on involvement in system implementation and optimization
  • In-depth knowledge of data security regulations and compliance standards in healthcare
Job Responsibility
Job Responsibility
  • Oversee the complete administration of Picture Archiving and Communication System (PACS)and related medical imaging applications infrastructure
  • Lead the implementation, configuration, and maintenance of PACS and related medical imaging applications software and hardware components
  • Facilitates the resolution and documentation of major incidents and outages to our production environment
  • Collaborate closely with radiologists, physicians, and other healthcare professionals to ensure efficient use of the PACS system
  • Proactively monitor and optimize PACS performance, identifying and resolving issues to ensure uninterrupted access to medical imaging data
  • Provide advanced technical support and training to end-users, troubleshooting complex PACS-related problems
What we offer
What we offer
  • medical, prescription drug, dental, vision plans, life insurance, paid time off (full-time benefit eligible team members may receive a minimum of 14 paid time off days, including holidays annually), tuition reimbursement, retirement plan benefit(s) including, but not limited to, 401(k), 403(b), and other defined benefits offerings
  • Fulltime
Read More
Arrow Right

IT PACS Systems Administrator Sr

The PACS Administrator job family orchestrates a complex set of functions to ach...
Location
Location
United States , Tacoma
Salary
Salary:
44.18 - 65.71 USD / Hour
americannursingcare.com Logo
American Nursing Care
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelors Other or equivalent job experience in Medical Imaging related field, computer science, Health Informatics, clinical imaging technology, upon hire
  • 7+ years of experience in PACS Administration including hands-on involvement in system implementation and optimization
  • In-depth knowledge of data security regulations and compliance standards in healthcare
  • Must live within one hour of one of the facilities that the employee supports
Job Responsibility
Job Responsibility
  • Oversee the complete administration of Picture Archiving and Communication System (PACS)and related medical imaging applications infrastructure
  • Lead the implementation, configuration, and maintenance of PACS and related medical imaging applications software and hardware components
  • Facilitates the resolution and documentation of major incidents and outages to our production environment
  • Collaborate closely with radiologists, physicians, and other healthcare professionals to ensure efficient use of the PACS system
  • Proactively monitor and optimize PACS performance, identifying and resolving issues to ensure uninterrupted access to medical imaging data
  • Provide advanced technical support and training to end-users, troubleshooting complex PACS-related problems
  • Implements process changes, collects data, and makes recommendations to expedite workflow
  • Monitors systems, interfaces, and integration pieces to include daily QC reports
  • Maintains an up-to-date understanding and working knowledge of the processes involved
  • Responds appropriately to requests and concerns from users or others affected by the systems
What we offer
What we offer
  • medical, prescription drug, dental, vision plans, life insurance, paid time off, tuition reimbursement, retirement plan benefit(s) including, but not limited to, 401(k), 403(b), and other defined benefits offerings
  • Fulltime
Read More
Arrow Right

Epic Security Analyst

We are looking for an experienced Epic Security Analyst to support and strengthe...
Location
Location
United States , Oklahoma City
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree is required
  • At least 5 years of experience in information technology, healthcare systems, or a related field is required
  • Epic certification in one or more applications is required
  • Prior experience supporting Epic security, access management, or application administration in a healthcare setting is strongly preferred
  • Working knowledge of EHR platforms, application security practices, governance frameworks, and identity and access management concepts is required
  • Demonstrated ability to lead complex issue resolution, coordinate cross-functional teams, and manage multiple priorities effectively
  • Familiarity with healthcare operations and clinical or business workflows is needed to support effective system design and optimization
Job Responsibility
Job Responsibility
  • Serve as a lead resource for diagnosing and resolving high-level Epic security and application issues, including incidents that involve multiple technical teams
  • Partner with operational and IT stakeholders to define corrective action plans, coordinate response efforts, and drive timely resolution of system-related challenges
  • Oversee scheduled maintenance activities such as updates, patches, and upgrades to preserve system stability, performance, and data protection
  • Direct testing and validation for configuration changes, enhancements, and new releases, ensuring updates satisfy functional expectations and follow established change control practices
  • Contribute to long-range planning for Epic security and application strategy by working with leadership to support organizational priorities and improve service delivery
  • Identify opportunities to strengthen usability, interoperability, and overall system effectiveness by collaborating with stakeholders on enhancement planning and prioritization
  • Manage assigned projects related to Epic implementations, upgrades, and optimization efforts, including planning, execution, communication, and post-go-live support
  • Maintain and reinforce governance standards for Epic system administration, with attention to privacy, confidentiality, regulatory compliance, and data security requirements
  • Provide guidance and mentorship to less experienced analysts, helping build team capability through coaching, knowledge sharing, and day-to-day leadership support
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • free online training
Read More
Arrow Right

Head Of Administration

The Head – Administration is responsible for leading and managing all administra...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
June 21, 2026
Flip Icon
Requirements
Requirements
  • 15+ years of experience in Administration, Facilities, or Operations Management (preferably in Healthcare or Corporate environment)
  • Bachelor’s degree in business administration, Management, or a related field
  • Master’s degree / MBA in Administration, Operations, or Management (preferred)
  • Strong leadership and team management capabilities
  • Expertise in facility and infrastructure management
  • Vendor management and negotiation skills
  • Strong understanding of statutory compliance and regulatory requirements
  • Budgeting, cost control, and financial acumen
  • Excellent problem-solving and decision-making skills
  • Strong communication and stakeholder management skills
Job Responsibility
Job Responsibility
  • Lead and oversee end-to-end administrative operations across all locations
  • Manage facility operations including infrastructure, utilities, housekeeping, and security
  • Ensure compliance with statutory regulations, licenses, and local authority requirements
  • Develop, implement, and monitor administrative policies, SOPs, and process improvements
  • Handle vendor management including selection, negotiations, contracts, and SLA monitoring
  • Drive cost optimization initiatives and manage administrative budgets effectively
  • Oversee asset management, inventory control, and procurement processes
  • Ensure workplace safety, hygiene, and compliance with applicable standards (especially healthcare norms if applicable)
  • Coordinate with HR, Finance, and Operations teams for smooth organizational functioning
  • Manage travel, logistics, and fleet operations (if applicable)
  • Fulltime
Read More
Arrow Right

Information Security Specialist/Analyst III

The Information Security Specialist/Analyst III reports to the Manager, Security...
Location
Location
United States
Salary
Salary:
Not provided
muschealth.org Logo
MUSC Health
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in information security, information assurance, computer science, or a related field with 5 years of IT security experience
  • or 10 years of hands-on experience in information security or related IT experience required, at least 6 of which must be directly related IT security experience
  • or a Master's degree in information security, information assurance, computer science, or a related field, and 3 years of IT security experience required
  • Advanced knowledge of information security principles, risk management, and regulatory compliance (HIPAA, FERPA, NIST, etc.)
  • Strong analytical and problem-solving skills with the ability to make decisions under pressure
  • Hands-on experience with Crowdstrike EDR, SIEM, IDS/IPS, vulnerability management, and threat intelligence tools
  • Familiarity with cloud security (Azure, AWS) and identity management solutions
  • Advanced Understanding on the administration and securing of various operating systems and enterprise applications with advanced security best practices
  • Excellent written and verbal communication skills, with the ability to translate technical findings into business-relevant language
  • Mentor junior analysts and contribute to the development of security standards, procedures, and playbooks
Job Responsibility
Job Responsibility
  • Serve as a lead escalation point for security incidents, overseeing detection, investigation, containment, and remediation within a CrowdStrike EDR environment across a healthcare infrastructure
  • Analyze findings from security monitoring systems, including Intrusion Detection/Prevention Systems (ID/PS) and Security Information Event Management (SIEM) consoles, to identify and respond to potential security incidents and data breaches
  • Perform cyber security incident handling, tracking and reporting
  • Utilize professional judgment and institutional knowledge to assess risk levels, conduct forensic investigations, isolate malware, identify attack vectors, provide guidance on remediation planning, and prioritize remediation efforts
  • Respond to relevant service requests received from end users (e.g. for investigation of security events)
  • Collaborate with internal Security Operations Center (SOC) teams and external Managed Security Service Providers (MSSPs) to contain and remediate security incidents
  • Configure, manage, and optimize SIEM platforms (Crowdstrike and/or Microsoft Sentinel) to enhance threat detection and response capabilities
  • Lead and manage large scale security-related projects, including tool implementations, upgrades, and process improvements
  • Conduct vulnerability assessments to identify security risks and report findings to system owners
  • Manage workflows to ensure that protected assets are properly assessed in a timely manner
  • Fulltime
Read More
Arrow Right

IT PACS Sr Systems Administrator

As an IT PACS Sr. Systems Administrator, you will be a lead technical expert, re...
Location
Location
United States , Chattanooga, Tennessee
Salary
Salary:
44.18 - 65.71 USD / Hour
americannursingcare.com Logo
American Nursing Care
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • This is a 100% on-site position
  • Bachelors Other or equivalent job experience in Medical Imaging related field, computer science, Health Informatics, clinical imaging technology
  • 7+ years of experience in PACS Administration including hands-on involvement in system implementation and optimization
  • In-depth knowledge of data security regulations and compliance standards in healthcare
Job Responsibility
Job Responsibility
  • Oversee the complete administration of Picture Archiving and Communication System (PACS)and related medical imaging applications infrastructure
  • Lead the implementation, configuration, and maintenance of PACS and related medical imaging applications software and hardware components
  • Facilitates the resolution and documentation of major incidents and outages to our production environment
  • Collaborate closely with radiologists, physicians, and other healthcare professionals to ensure efficient use of the PACS system
  • Proactively monitor and optimize PACS performance, identifying and resolving issues to ensure uninterrupted access to medical imaging data
  • Provide advanced technical support and training to end-users, troubleshooting complex PACS-related problems
What we offer
What we offer
  • medical, prescription drug, dental, vision plans, life insurance, paid time off, tuition reimbursement, retirement plan benefit(s) including, but not limited to, 401(k), 403(b), and other defined benefits offerings
  • Fulltime
Read More
Arrow Right

It Project Manager

Our company is seeking an experienced IT Project Manager with a strong backgroun...
Location
Location
United States , West Palm Beach
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Technology, Computer Science, Healthcare Administration, or related equivalent experience
  • Minimum of 5 years of IT project management experience, with at least 2 years in a healthcare setting focusing on EHR systems
  • Hands-on experience managing application development projects and leading software rollouts and implementations
  • Strong knowledge of agile methodologies
  • Excellent communication and stakeholder management skills
  • PMP certification preferred
Job Responsibility
Job Responsibility
  • Lead, plan, and execute EHR and other healthcare application projects from inception through deployment
  • Collaborate with clinical and technical teams to ensure alignment of IT initiatives with healthcare operational needs
  • Manage timelines, budgets, and resources for application development, software rollouts, and related IT projects
  • Oversee vendor relationships and coordinate with stakeholders for successful application implementation
  • Apply agile project management practices, facilitating sprint planning, standups, and retrospectives
  • Identify and mitigate project risks and ensure compliance with healthcare regulations and data security standards
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right

Technical Project Manager

Premium Health is seeking a highly organized and collaborative Technical Project...
Location
Location
United States , Brooklyn
Salary
Salary:
110000.00 - 130000.00 USD / Year
premiumhealth.org Logo
Premium Health
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in information technology, Computer Science, Healthcare Informatics, or related field
  • 3+ years of experience in IT project management, preferably in a healthcare or nonprofit setting
  • Excellent communication skills, with the ability to translate technical details for non-technical stakeholders
  • Strong organization, time management, and prioritization abilities
  • Critical thinking, problem-solving, and conflict resolution skills
  • Adaptability and comfort managing multiple concurrent projects in a fast-paced environment
  • Strong customer service mindset, with focus on supporting clinical and operational needs
  • Ability to lead cross-functional teams and build consensus across departments
  • Proficiency with project management tools (e.g., MS Project, Wrike, Asana, Jira, Trello)
  • Basic understanding of networking, cloud, security, or database environments
Job Responsibility
Job Responsibility
  • Coordinate the planning and execution of end-to-end project activities for IT initiatives, including scope definition, scheduling, budget tracking, and resource allocation in collaboration with IT leadership
  • Collaborate with internal IT staff, department stakeholders, and external vendors to ensure timely and successful project delivery
  • Translate stakeholders’ needs into clear technical requirements, project plans, and roadmaps
  • Support project budget tracking by gathering cost estimates, tracking expenditures, and coordinating procurement activities, ensuring adherence to purchasing policies
  • Assist with vendor selection, contracting, and procurement processes to support project goals
  • Support project intake and triage by reviewing incoming IT requests, clarifying scope and requirements, and coordinating prioritization with IT leadership and stakeholders
  • Monitor project progress, identify risks, and implement mitigation strategies
  • Review and analyze helpdesk metrics to identify trends, recurring issues, and opportunities for workflow or system improvements, and collaborate with IT leadership to prioritize enhancements
  • Conduct workflow and business process analysis with clinical, administrative, and operational departments to understand current processes and identify opportunities for IT-driven improvements
  • Develop and maintain project documentation, such as charters, timelines, status reports, and post-implementation reviews
What we offer
What we offer
  • Public Service Loan Forgiveness (PSLF)
  • Paid Time Off
  • Medical, Dental and Vision coverage with MERP
  • 403(b) Retirement plan with employer matching contribution
  • Fulltime
Read More
Arrow Right