Sr. Director, Information Security & Cloud Operations

Job Summary

Required Qualifications

• Bachelor’s degree in computer science, Engineering, Information Security, Information Systems, or related field
• At least 15 years of experience in healthcare, biotech, medtech, or other regulated healthcare environments, with direct responsibility for information security in complex, multi-stakeholder settings
• At least 5 years of experience serving as a Sr. Director of Information Security and Cloud Operations, or equivalent senior leadership role accountable for enterprise security and cloud operations in regulated environments in healthcare
• Demonstrated experience designing and operating information security programs that support or achieve HITRUST, ISO 27001, and related certifications, as well as HIPAA and FDA regulatory requirements
• Proven track record designing and implementing continuous security and compliance frameworks (for example security-as-code, automated controls testing, integrated GRC tooling) in cloud-native environments, including using AI to support security documentation, vendor assessments, policy oversight, and internal audits
• Strong expertise in modern cloud architectures and operations (AWS/Azure/GCP), including infrastructure-as-code, Kubernetes/containers, microservices, serverless architecture, zero trust networking, and observability
• Demonstrated experience building and securing AI and data infrastructure (e.g., GPU clusters, vector databases, AI model serving, data lakes) and supporting AI/ML workloads in validated production environment
• Deep understanding of HIPAA, 21 CFR Part 11, GxP/CSV/CSA, data privacy laws, and security requirements applicable to healthcare, clinical trials, and AI-based systems
• Excellent communication skills, with the ability to translate complex security and technical concepts into clear, business-relevant narratives for executives, regulators, and partners