Sr Mgr Product Information Security

Healthcare’s helping hand.

CHG shook things up in 1979 by inventing the locum tenens staffing model. We connect doctors with patients who need their care. As the largest physician staffing firm in America, our providers treat millions of patients each year.

Our industry is growing and demand is high. This means you’ll have plenty of opportunities to grow and develop in your career. Keeping healthcare healthy can be as fun as it is rewarding

The Product Information Security Leader will drive the security strategy and implementation across the enterprise, with a primary focus on application security and cloud infrastructure security. This role combines technical expertise with leadership skills to ensure the secure development and deployment of our products while enabling innovation and business growth.

Responsibilities:

• Lead the design and implementation of the application security program, including security requirements, threat modeling, and secure development practices

• Establish and maintain secure coding standards, security testing frameworks, and vulnerability management processes

• Drive security assessments and penetration testing initiatives for enterprise products

• Collaborate with development teams to integrate security throughout the SDLC

• Implement and maintain application security tools and automation

• Collaborate with cloud engineers on cloud security architecture standards and best practices

• Collaborate and partner with DevOps teams to implement secure CI/CD pipelines

• Collaborate in maintaining security documentation and artifacts for compliance requirements

• Participate and lead regular risk assessments and develop mitigation strategies for enterprise products

Qualifications:

• Build and lead a team of product security engineers

• Develop and maintain security roadmaps aligned with product and business objectives

• Partner with Product Management to balance security requirements with product features

• Establish security metrics and KPIs to measure program effectiveness

• Present security status and risks to executive leadership

• Manage security budget and resource allocation

Education & Years of Experience

• 10+ years of information security experience with 5+ years focusing on application security

• Extensive experience with cloud platforms (AWS, Azure, GCP) and their security features

• Deep understanding of secure software development practices and SDLC

• Strong knowledge of security frameworks (OWASP, NIST, CIS)

• Experience with container security and microservices architecture

• Proven track record of building and leading security teams

• Excellent communication skills with ability to influence technical and non-technical stakeholders

Preferred Skills:

• Application Security Testing Tools (SAST, DAST, SCA)

• Cloud Security Tools and Services

• Container Security (Docker, Kubernetes)

• CI/CD Security Integration

• Infrastructure as Code (Terraform, CloudFormation)

• API Security

• Identity and Access Management

• Security Monitoring and Logging

• Threat Modeling

• Incident Response

We believe in fair compensation for all of our people, which is why our pay structure takes into account the cost of labor across U.S. geographic markets. For this position, we offer a pay range of $XX -- $XX annually, with pay varying depending on work location and job-related factors such as knowledge, position level and experience. During the hiring process, your recruiter can provide more information about the specific salary range for the job location. 

CHG Healthcare offers starting salaries for sales positions in the form of total target compensation (TTC = base + commission + bonus), which includes base pay, commission, and bonuses. Sales positions receive short-term incentives through commission plans and bonuses. On the other hand, non-sales positions have starting salaries that consist of a base salary and short-term incentives through various bonus plans, which are paid out monthly, quarterly, or annually. 
 

In return we offer:

• 401(k) retirement plan with company match

• Traditional healthcare benefits such as medical and dental coverage, and some unique benefits like onsite health centers, corporate wellness programs, and free behavioral health appointments.
• Flexible work schedules - including work-from-home options available
• Recognition programs with rewards including trips, cash, and paid time off
• Family-friendly benefits including paid parental leave, fertility coverage, adoption assistance, and marriage counseling
• Tailored training resources including free LinkedIn learning courses
• Volunteer time off and employee-driven matching grants
• Tuition reimbursement programs

Click here to learn more about our company and culture.

CHG Healthcare values a diverse and inclusive workforce. Interested in this role but not a perfect fit? Apply anyway.

We welcome applicants of any race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status and individuals with disabilities as an Affirmative Action/Equal Opportunity Employer. We are an at-will employer.

What makes CHG Different?