SENIOR INFORMATION SECURITY MANAGER

Our Company

BrightSpring Health Services

Overview

We are seeking an experienced and dynamic Senior Information Security Manager to join our Information Security Team at BrightSpring Health. As an integral part of our team, you will lead efforts to safeguard critical information assets and maintain the confidentiality, integrity, and availability of our systems and data. The ideal candidate will have a strong background in information security, risk management, and compliance, along with exceptional leadership and communication skills. You will play a pivotal role in shaping our security strategy, ensuring compliance with relevant regulations, and fostering a culture of security awareness throughout the organization.

Responsibilities

• Develop and implement an information security strategy aligned with business objectives
• Identify emerging security threats and vulnerabilities, and proactively adjust security strategies accordingly
• Collaborate with cross-functional teams to integrate security practices into system development lifecycle and business processes
• Supplement the day-to-day operation of security controls, including email security, identity and access management, and endpoint protection
• Monitor security events and incidents, responding promptly to mitigate potential threats
• Lead incident response efforts, including investigation, containment, and recovery
• Ensure the organization's compliance with relevant industry regulations (e.g., CIS, SOC2, HIPAA) and internal policies
• Develop and enforce security requirements for vendors and third parties accessing the organization's systems or data
• Manage and mentor a team of security professionals, setting clear goals and expectations

Qualifications

• Bachelor’s degree in Cybersecurity or a related field, such as Information Systems or Computer
• Ten or more years of experience in information security management or a related field
• Proven experience (six plus years) in information security management, with a track record of success in progressively responsible roles
• Industry-recognized certifications like CISSP or CISM preferred
• Strong knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO 27001)
• Excellent communication skills, both written and verbal, with the ability to present complex technical information to non-technical stakeholders
• Strong leadership and team management skills, with a history of building and leading effective security teams

About our Line of Business

BrightSpring Health Services is a leading provider of complementary home and community-based pharmacy and health services for complex populations in need of chronic and/or specialized care. Through the company’s pharmacy and provider services to seniors and specialty (including behavioral) populations, we provide comprehensive care and clinical services in 50 states to over 360,000 customers, clients and patients daily. The company’s services foster greater patient and family satisfaction, improve outcomes and reduce health care system costs, and are supported by industry-leading quality outcomes. For more information, visit www.brightspringhealth.com. Follow us on Facebook, Twitter and LinkedIn.