Availity

Chief Information Security Officer

Availity  •  United States (Remote)  •  4 hours ago
Apply
AI can make mistakes so check important info. Chat history is never stored.

Job Description

Availity delivers revenue cycle and related business solutions for health care professionals who want to build healthy, thriving organizations. Availity has the powerful tools, actionable insights and expansive network reach that medical businesses need to get an edge in an industry constantly redefined by change.

At Availity, we're not just another Healthcare Technology company; we're pioneers reshaping the future of healthcare! With our headquarters in vibrant Jacksonville, FL, and an exciting office in Bangalore, India, along with an exceptional remote workforce across the United States, we're a global team united by a powerful mission.

We're on a mission to bring the focus back to what truly matters – patient care. As the leading healthcare engagement platform, we're the heartbeat of an industry that impacts millions. With over 2 million providers connected to health plans, and processing over 13 billion transactions annually, our influence is continually expanding.

Join our energetic, dynamic, and forward-thinking team where your ideas are celebrated, innovation is encouraged, and every contribution counts. We're transforming the healthcare landscape, solving communication challenges, and creating connections that empower the nation's premier healthcare ecosystem.

Availity is seeking a Chief Information Security Officer to lead the company’s enterprise cybersecurity, security assurance, and technology risk programs. Reporting directly to the Chief Technology Officer, the Chief Information Security Officer is responsible for protecting Availity, its customers, and the highly sensitive healthcare information entrusted to its platforms.

The successful candidate must have personally led significant healthcare security audit and assurance programs, including multiple Health Information Trust Alliance assessment or certification cycles, multiple System and Organization Controls examination cycles, major healthcare customer audits, and remediation of significant findings.

Sponsorship, in any form, is not available for this position.

Location: Remote, US

Role qualifications:

  • Significant executive cybersecurity leadership experience, with substantial cybersecurity leadership experience in healthcare.
  • Demonstrated experience protecting PHI and other regulated healthcare data in a large-scale, cloud-based healthcare technology environment.
  • Direct executive accountability for major healthcare security audits, certifications, customer assessments, and regulatory examinations.
  • Personal leadership of multiple HITRUST assessment or certification cycles and multiple SOC examination cycles.
  • Experience leading complex healthcare customer security audits and assessments, including remediation of significant findings and prevention of repeat findings.
  • Experience establishing continuous audit readiness, automating control monitoring, and automating audit evidence collection.
  • Experience operating security programs across multiple cloud providers and securing highly distributed, virtual, and international teams.
  • Experience establishing controls for cross-border access to healthcare information and systems containing PHI or other sensitive healthcare data.
  • Board and executive-level communication experience, including presentation of security posture, audit results, risks, incidents, findings, and remediation status.
  • Strong knowledge of cloud security, software security, identity, data protection, security operations, incident response, and cyber resilience.
  • Proven ability to build and lead high-performing security organizations across multiple countries.

Preferred Qualifications:

  • Security leadership experience in a large healthcare technology company serving health plans and healthcare providers.
  • Experience with healthcare transaction networks, regulated healthcare data exchanges, large API ecosystems, and major healthcare customers.
  • Experience consolidating overlapping security frameworks into a common control environment and materially reducing recurring audit time and cost.
  • Experience implementing continuous control monitoring across multiple cloud providers.
  • Experience with AI security and governance, acquisition integration, and security teams distributed across the United States and India.

What you will be doing:

Enterprise cybersecurity leadership

  • Develop and execute a multi-year cybersecurity strategy aligned to business strategy, customer commitments, technology direction, and risk tolerance.
  • Set the enterprise security vision, priorities, policies, standards, operating model, and accountability across technology, product, engineering, business, and corporate functions.
  • Ensure security is built into application development, cloud architecture, data platforms, APIs, AI capabilities, and other core technology capabilities.

Security assurance, audits, and continuous compliance

  • Own Availity’s enterprise security audit and assurance strategy, including continuous readiness for customer, external, regulatory, and internal audits.
  • Lead major healthcare assurance programs, including HITRUST, SOC examinations, customer security audits, and remediation of significant findings.
  • Simplify, standardize, and automate the control environment, including automated control monitoring and reusable audit evidence across cloud environments.
  • Track findings, exceptions, risks, evidence requirements, owners, deadlines, and remediation commitments with clear executive visibility.

Board and executive engagement

  • Serve as the principal cybersecurity advisor to the CTO, executive leadership team, and Board of Directors.
  • Translate complex technical risks into business, customer, financial, operational, and reputational impact.
  • Give candid updates on audit posture, material findings, accepted risks, incidents, emerging threats, and areas requiring investment or Board attention.

Multi-cloud and global security

  • Establish a consistent security model across multiple cloud providers, including identity, workloads, applications, networks, data, logging, detection, and privileged access.
  • Secure Availity’s highly virtual and international operating model, including teams outside the United States that appropriately access or support systems containing PHI and sensitive healthcare data.
  • Ensure international operations are incorporated into audits, control testing, incident response, training, and risk management.

Security operations, incident response, and resilience

  • Ensure Availity can rapidly detect, investigate, contain, communicate, and recover from security incidents.
  • Lead significant cyber incident response when required and coordinate across technology, legal, privacy, compliance, communications, customers, and executive leadership.
  • Regularly test recovery from disruptive events involving cloud services, identities, APIs, software supply chains, third parties, international operations, AI systems, and healthcare platforms.

Future security strategy

  • Prepare Availity for the next three to five years of cybersecurity risk, including AI security, machine and workload identity, software supply chain risk, automation, and cyber resilience.
  • Establish AI security standards that protect sensitive healthcare data, control autonomous actions, support auditability, and manage third-party AI platform risk.
  • Build, develop, and retain a high-performing global security leadership team and succession pipeline.

Customer and external leadership

  • Represent Availity as a trusted security executive with major health plans, providers, partners, auditors, regulators, and industry forums.
  • Respond credibly and transparently to customer security concerns and strengthen Availity’s reputation as a trusted healthcare technology platform.

Availity culture and benefits:

  • Availity is a certified “Great Place to Work”, a “Best Workplaces for Technology Companies”, a “Best Workplaces for Women” and a “Best Workplaces for Millennials”!
  • Culture is important to us and there are many ways for you to make your mark here!
  • We have several Diversity & Inclusion teams and various ways to engage with fellow Availity associates. “AvaiLadies”, “Beyond Black”, “HOLA”, “Availity Pride”, “VetAvaility” a Young Professionals Group and “She Can Code IT” a group for women in tech are some of the groups you can get involved in.
  • Availity is a culture of continuous learning. We have many resources and experts in our tech stack and in our industry that can help get you there too!
  • We offer a competitive salary, bonus structure, generous HSA company contribution, healthcare, vision, dental benefits and a 401k match program that you can take advantage of on day one!
  • We offer unlimited PTO for salaried associates + 9 paid holidays. Hourly associates start at 19 days of PTO and go up from there with all the same holiday benefits.
  • Interested in wellness? We allow our associates to reimburse up to $250/year for gym memberships, participation in racing events, weight management programs, etc.
  • Interested in furthering your education? We offer education reimbursement!
  • Availity offers Paid Parental Leave for both moms and dads, both birth parents and adoptive parents.
  • Want to work for an organization that gives back to the community? You’re at the right place! Availity partners with various organizations, both locally and nationally, to raise awareness, funds and morale as our staff members volunteer their time and funds to engage the organizations campaign.

Next steps:

After you apply, you will receive text/email messages thanking you for applying and then you will continue to receive more text/email messages alerting you as to where you are in the recruitment process.

Video Camera Usage:

Availity fosters a collaborative and open culture where communication and engagement are central to our success. As a remote first company, we are also camera-first and provide all associates with camera/video capability to simulate the office environment. If you are not able to use your camera for all virtual meetings, you should not apply for this role.

Having cameras on helps create a more connected, interactive, and productive environment, allowing teams to communicate more effectively and build stronger working relationships. The usage of cameras also enhances security and protects sensitive company information. Video participation is required to ensure that only authorized personnel are present in meetings and to prevent unauthorized access, data breaches, preventing social engineering, or the sharing of confidential information with non-participants.

Disclaimers:

Availity is an equal opportunity employer and makes decisions in employment matters without regard to race, religious creed, color, age, sex, sexual orientation, gender identity, gender expression, genetic information, national origin, religion, marital status, medical condition, disability, military service, pregnancy, childbirth and related medical conditions, or any other classification protected by federal, state, and local laws and ordinances.

Availity is a drug-free workplace. Candidates are required to pass a drug test before beginning employment.

NOTICE: Federal law requires all employers to verify the identity and employment eligibility of all persons hired to work in the United States. When required by state law or federal regulation, Availity uses I-9, Employment Eligibility Verification in conjunction with E-Verify to determine employment eligibility. Learn more about E-Verify at http://www.dhs.gov/e-verify

Click the links below to view Federal Employment Notices.

Family & Medical Leave Act Equal Employment Law Poster Pay Transparency Employee Polygraph Protection Act IER Right to Work Poster Important Notice about Employee Rights to Organize and Bargain Collectively with Their Employers

Availity

About Availity

Availity is the place where healthcare finds the answers needed to shift focus back to patient care. We work to solve communication challenges in healthcare by creating a richer, more transparent exchange of information among health plans, providers, and technology partners. As the nation’s largest health information network, Availity facilitates billions of clinical, administrative, and financial transactions annually. Our suite of dynamic products, built on a powerful, intelligent platform, enables real-time collaboration for success in a competitive, value-based care environment.

Industry
IT & Software
Company Size
1,001-5,000 employees
Headquarters
Jacksonville, FL
Year Founded
Unknown
Social Media