Senior Manager, Cybersecurity Operations

USRC's greatest strength in being a leader in the dialysis industry is our ability to recognize and celebrate the differences in our diverse workforce. We strongly believe in recruiting top talent and creating a diverse and inclusive work climate and culture at all levels of our organization.

SUMMARY

The Sr. Manager, Cybersecurity Operations will play an integral role in leading and maturing our operational security programs across the healthcare enterprise. This role will oversee critical functions including incident response, vulnerability management, penetration testing, and governance, risk, and compliance (GRC) - with a laser focus on protecting electronic protected health information (ePHI), ensuring clinical continuity, and maintaining regulatory compliance (e.g., HIPAA, HITECH).

As a hands-on leader, you'll guide multidisciplinary teams, work across IT and business units, and play a key role in threat preparedness, detection, response, and risk reduction in a highly regulated and mission-critical environment.

Essential Duties and Responsibilities include the following. Other duties and tasks may be assigned

• Partner with peers to lead the enterprise incident response (IR) program, including planning, detection, containment, eradication, recovery, and post-mortem review.
• Oversee 24/7 security monitoring via internal or external SOC teams and ensure robust playbooks and escalation protocols are in place.
• Coordinate with Legal, Compliance, Privacy, and Clinical stakeholders during high-severity events, especially those involving PHI.
• Direct the enterprise vulnerability management lifecycle, ensuring timely scanning, risk-based prioritization, and remediation.
• Lead integration of vulnerability intelligence with IT asset inventory, patching cadence, and threat landscape context.
• Work closely with application, infrastructure, and clinical engineering teams to address vulnerabilities in legacy systems and medical devices (IoMT).
• Manage internal and third-party penetration tests, red team exercises, and social engineering simulations.
• Translate technical findings into actionable risk narratives for IT and business stakeholders.
• Champion purple teaming efforts to align offensive assessments with defensive capability development.
• Collaborate with risk and compliance teams to maintain alignment with frameworks such as HIPAA, HITRUST, NIST CSF, and ISO 27001.
• Support and guide audit activities, policy development, risk assessments, and compliance reporting.
• Contribute to vendor and third-party risk evaluations with a focus on PHI exposure and critical service dependencies.
• Build, mentor, and retain a high-performing cybersecurity operations team.
• Develop metrics, dashboards, and KPIs to measure program health and report on security posture to executive leadership.
• Drive maturity initiatives across all operational domains, with an emphasis on automation, threat-informed defense, and continuous improvement.
• Liaison with the business continuity management team to validate security practices for both disaster recovery planning (DRP) and business continuity management (BCM) testing and operations when a failover occurs
• Review security technologies, tools and services, and make recommendations to the broader security team for their use based on security, financial and operational metrics
• Upholds management goals of corporation by leading staff in team concepts and promoting a team effort.
• Maintains effective personnel management and employee relations, including evaluating the performance of all personnel; approving and submitting all hours worked and counseling and disciplining employees.
• Recruits, trains, develops, and supervises personnel.
• Actively promotes GUEST customer service standards; develop effective relationships at all levels of the organization.
• Effectively communicates expectations; accepts accountability and holds others accountable for performance.
• Regular and reliable attendance is required for the job.

Qualifications/Requirements:

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily.

Requirements include:

• Bachelor's degree in computer science, information systems, engineering, cybersecurity or a related field (Master's preferred).
• 10--15+ years of progressive experience in cybersecurity, with at least 5 years in architecture and leadership roles.
• 8--12+ years of progressive experience in cybersecurity.
• 3--5+ years in a leadership/management role (managing technical teams across multiple domains).
• Proven track record of building and leading security operations teams, incident response programs, and cross-functional remediation efforts.
• Led or heavily contributed to enterprise-level incident response programs and crisis management.
• Experience with IR frameworks (e.g., NIST 800-61), playbook development, and tabletop exercises.
• Able to manage complex security incidents across on-prem, cloud, and hybrid environments.
• Strong understanding of legal, regulatory, and reputational impacts of security breaches.
• Oversight of VM lifecycle--from scanning and risk prioritization to remediation tracking.
• Strong grasp of CVSS, asset criticality, and threat context for risk-based vulnerability management.
• Experience working with platforms like Tenable, Qualys, Rapid7, and integrating findings into ITSM workflows.
• Ability to drive accountability across infrastructure, DevOps, and application teams.
• Deep understanding of offensive security principles, even if not performing tests directly.
• Experience managing internal or external red teams and interpreting pentest findings to drive remediation.