Position Overview:
As the Technical Program Manager for Vulnerability Management, you will be responsible for overseeing and coordinating the identification, assessment, and mitigation of security vulnerabilities across our infrastructure and applications. You’ll work closely with cross-functional operations and development teams to ensure our security posture remains robust and resilient against emerging threats.
About Center of Excellence:
Centers of Excellence (COE) are teams whose primary goal is to provide expertise in a specific field. COEs will usually provide support through training, research, and skilled leaders. In the case of HealthEdge, our Centers of Excellence incorporate the Human Resources, IT, Legal and Financial fields, all of which provide support to our Product divisions and allows the enterprise to move forward and achieve its goals.
Your Impact:
- You’ll play a pivotal role in maintaining HealthEdge’s strong security posture by ensuring vulnerability management best practices are foundational throughout our IT, operations, and development teams.
- Enhance our existing strategy and processes to ensure the highest levels of efficacy and efficiency throughout all business units.
- Leverage your subject matter expertise as you assist a multitude of stakeholders with triage and remediation guidance.
- Validate and approve/reject false positives and help with assessing ambiguity.
- Establish processes and guide adoption of continually improving Vulnerability Management excellence.
- Leverage scanning, patching, risk management, and reporting tooling to empower awareness throughout the organization.
-
Identify opportunities for automation in your world whenever possible.
Stakeholder Communication and Reporting:
- Provide regular updates on vulnerability management to executive leadership and key stakeholders.
- Collaborate with internal departments and external vendors to align security efforts with business objectives and customer needs.
-
Develop key performance indicators (KPIs) and metrics to measure the effectiveness of our program.
Compliance and Regulatory Adherence:
- Ensure compliance with healthcare industry standards and regulations, including HIPAA, HITRUST, and other applicable frameworks.
- Collaborate with legal, compliance, and audit teams to support security audits, certifications, and assessments.
- Maintain thorough documentation of security policies and procedures
What You Bring:
- 4+ years of experience in program management
- 3+ years of experience with both infrastructure and application vulnerability management
- Hands-on experience with application security scanning tools
- Hand-on experience with infrastructure security scanning tools
- Experience with workflow and ticketing platforms
- Excellence in bridge building and education
- Strong problem-solving skills, attention to detail, and the ability to manage multiple tasks and priorities in a fast-paced environment.
- Excellent written and verbal communication skills, with the ability to effectively convey technical concepts to non-technical stakeholders.
- Ability to align security and compliance with broader organizational goals and adapt to evolving threats.
HealthEdge commits to building an environment and culture that supports the diverse representation of our teams. We aspire to have an inclusive workplace. We aspire to be a place where all employees have the opportunity to belong, make an impact and deliver excellent software and services to our customers.
Geographic Responsibility: While HealthEdge is located in Burlington, MA you may live anywhere in the US
Type of Employment: Full-time, permanent
Travel %: 10%
Work Environment: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job:
- The employee is occasionally required to move around the office. Specific vision abilities required by this job include close vision, color vision, peripheral vision, depth perception, and ability to adjust focus.
- Work across multiple time zones in a hybrid or remote work environment.
- Long periods of time sitting and/or standing in front of a computer using video technology.
-
May require travel dependent on company needs.
The above statements are intended to describe the general nature and level of the job being performed by the individual(s) assigned to this position. They are not intended to be an exhaustive list of all duties, responsibilities, and skills required. HealthEdge reserves the right to modify, add, or remove duties and to assign other duties as necessary. In addition, reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this position in compliance with the Americans with Disabilities Act of 1990. Candidates may be required to go through a pre-employment criminal background check.
HealthEdge is an equal opportunity employer. We are committed to workforce diversity and actively encourage all qualified persons to seek employment with us, including, but not limited to, racial and ethnic minorities, women, veterans and persons with disabilities.
#LI-Remote