Information Security Manager

Below are the key details regarding the position:

• Job Title

  – Information Security Expert/Assistant Manager

• Location

  : Remote

• Department

  : Information Security & Compliance

• Employment Type

  : Full-Time

• Shift Timing

  : 2:00 PM – 11:30 PM IST

  OR

  4:00 PM to 1:30 AM IST (to align with U.S. client)

About Us

We are a HITRUST-certified Business Associate (BA) operating in the healthcare domain and serving global clients with the highest standards of data protection and regulatory compliance. Our mission is to safeguard sensitive information by aligning with HIPAA, HITRUST, ISO 27001, and other industry standards while driving risk-aware business processes.

Role Summary

Information Security Expert

The role also requires proactive collaboration across departments to support business impact analysis, lead control implementation reviews, and ensure continuous alignment with evolving cybersecurity standards.

Key Responsibilities

• Lead and support activities related to

  Audit, Compliance, Risk Management, and Governance.

• Draft and update information security and compliance policies, standard operating procedures (SOPs), and internal control documentation

  .

• Conduct induction training for new joiners and lead ongoing awareness training programs for employees.

• Design and distribute security awareness flyers and educational content to promote best practices.

• Work closely with department heads to assess compliance expectations and gather security and privacy-related inputs.
• Identify compliance gaps, track remediation efforts, and ensure implementation of corrective actions across business units.

• Respond to RFPs, RFIs, client questionnaires, and other security and compliance assessments.

• Coordinate and support client audits, attestations, and external assessments, ensuring timely and accurate responses.
• Review vendor contracts, NDAs, and client agreements from an information security and compliance perspective, in collaboration with legal and procurement teams.
• Maintain a catalog of all internal security controls with mapping to f

  rameworks like HIPAA, HITRUST, ISO 27001, and NIST.

• Perform Business Impact Analysis (BIA), risk assessments, and gap analysis across systems, infrastructure, and business processes.
• Conduct targeted internal control reviews and fieldwork to test implementation of technical and administrative safeguards.
• Lead or assist in incident management, including investigation, documentation, and coordination of corrective actions.
• Maintain security documentation, diagrams, and control records in a professional, audit-ready format.
• Partner with the Compliance Head in building and maintaining a Global Compliance Program, ensuring risks are addressed and best practices are implemented.
• Drive security governance alignment, facilitate internal compliance initiatives, and support maturity improvement efforts.
• Build and foster cross-functional relationships to drive collaboration and enhance the security posture organization-wide.

Required Qualifications

• Bachelor’s degree in information security, Computer Science, IT, or a related field.
• 9+ years of experience in information security, IT governance, or compliance domains.
• Strong expertise in implementing and managing controls aligned to frameworks like

  HIPAA, HITRUST, ISO 27001, or NIST CSF.

• Excellent verbal and written communication skills, with a strong ability to create structured reports and risk summaries.
• Experience with BIA, Risk Treatment Planning, Policy Governance, and Audit Coordination.
• Strong analytical, documentation, and project management abilities.

Preferred Qualifications

• Certifications such as CISM, CISA,

  ISO 27001 Lead Auditor

  /Implementer, CISSP.
• Experience working in a healthcare domain or with Business Associate clients.
• Hands-on exposure to security tools (GRC platforms).
• Prior experience supporting external assessments or certifications (e.g., HITRUST audits, ISO audits).

Advantmed India LLP: Elevating Healthcare Performance

Founded: 2005 | Headquarters: Santa Ana, California

Advantmed is a technology driven healthcare solutions provider dedicated to streamlining clinical and administrative workflows for payers and providers. Our mission is to enhance financial and clinical outcomes through innovative, data-driven solutions.

With over 20 years of expertise, we leverage advanced AI/NLP technologies to improve coding accuracy, ensure regulatory compliance, and optimize financial performance.

Core Offerings:

✔ Risk Adjustment Coding (CMS-HCC, ACA)

✔ HEDIS Abstraction

✔ Suspect Analytics & Gap Closure

✔ Provider-Side Concurrent Coding

✔ Health Assessments (In-home & Virtual)

Why Choose Advantmed?

✅

✅ Tailored Solutions for unique organizational needs

✅ Commitment to Excellence through innovation and transparency

The building B.L.O.C.K.S of our culture.

• B

  RING THE FUN

• L

  EVERAGE TOGETHER FOR BETTER

• O

  UTPERFORM YOURSELF

• C

  ARE AT EVERY TOUCHPOINT

• K

  EEP YOUR WORD KEEP IT REAL

• S

  TAY CURIOUS & LISTEN WELL

Thanks and regards,

Brijesh Vora

6357405687