Senior Information Security Director

Medi Sys Health Network & The Transformation Group+ (TTG) is a dedicated healthcare Managed Service Organization (MSO) and professional services firm. TTG’s team of healthcare specialists, analysts, and developers is united by a mission to strengthen healthcare operations through smart, reliable, and purpose‑driven technology. Our deep understanding of clinical and operational workflows allows us to build solutions that go beyond IT, helping providers deliver better care, improve outcomes, and work more efficiently.

Medi Sys Health Network provides the financial foundation and long‑term stability for The Transformation Group+ (TTG). While your employment and benefits will be backed by Medi Sys — offering the job security — your day‑to‑day work will be with TTG, supporting a diverse portfolio of hospitals, clinics, and health networks.

Hybrid work schedule (3 days in office, 2 days remote) - first 90 days are on fully in office

If located outside of the NYC/Long Island area, fully remote options are available.

Travel may be required based upon client needs.

The Transformation Group+ (TTG) is a healthcare‑specific Managed Services Organization (MSO) delivering high‑impact IT, security, and compliance services to provider organizations nationwide. We are seeking a Senior Information Security Director who can operate at the intersection of hands‑on engineering, strategic advisory, and leadership execution.

This role is responsible for assessing, implementing, and managing comprehensive security programs for healthcare clients—spanning technical controls, governance, risk, compliance, and incident response. You will also support TTG’s internal security posture, ensuring our own environment reflects the standards we deliver to clients.

The ideal candidate brings deep technical expertise, strong client‑facing communication skills, and the ability to translate complex security requirements into practical, scalable solutions.

• Lead security assessments for prospective and existing clients, identifying gaps, risks, and improvement opportunities across infrastructure, applications, cloud environments, and organizational processes.
• Present findings and recommendations to technical and non‑technical stakeholders with clarity and confidence.
• Serve as a trusted advisor on security architecture, compliance requirements, and best‑practice frameworks relevant to healthcare organizations.

• Implement, configure, and manage security controls across Active Directory, Azure, IAM, endpoint protection, network security, and cloud environments.
• Oversee or support Epic Security administration, access governance, and template/role design.
• Develop and execute vulnerability management processes, including scanning, remediation planning, and reporting.
• Support or lead incident response activities, including triage, containment, investigation, documentation, and breach notification coordination.
• Conduct ongoing risk assessments, threat/vulnerability analyses, and control evaluations aligned with healthcare regulatory requirements (e.g., HIPAA, HITECH) and industry frameworks.
• Develop, maintain, and implement security policies, standards, and procedures for both TTG and client organizations.
• Support audit readiness and audit response activities for internal and client environments.
• Lead or contribute to Disaster Recovery and Business Continuity planning, testing, and program management.
• Design and oversee security program components such as monitoring, logging, SIEM use cases, DLP, identity governance, and access review processes.
• Drive continuous improvement initiatives across security operations, compliance workflows, and client service delivery.
• Deliver or coordinate security awareness training and promote a culture of security across TTG and client organizations.
• Collaborate with TTG leadership to ensure alignment between security strategy, operational execution, and client needs.

• 7+ years of experience in Information Security, with a blend of engineering, consulting, and program leadership responsibilities.
• Team player…