Security Governance Program Manager

This role In this newly created role, the Security Governance Program Manager will be responsible for day-to-day implementation and management of a HITRUST program as well as coordinating security risk management and vendor due diligence for Imagine Pediatrics. You will serve as a key subject matter expert (SME) for governance, risk, and compliance within Imagine Pediatrics' information security team, support the implementation and ongoing program management for HITRUST r2 certification, and maintain Imagine Pediatrics' security policies, standards, and procedures. You will also lead and enhance the third-party/vendor risk management program, administer the security GRC toolset, coordinate and drive internal security risk assessments and auditing activities, collaborate with business and clinical teams to ensure effective ePHI management, respond to third-party security and privacy diligence requests, and work with external auditors and partners on security certifications and attestations.