Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Newfire Global Partners

Director of Infrastructure – Security

Newfire Global Partners

Director managing Infrastructure & Security programs for a digital health client ensuring compliance with HIPAA and SOC standards. Leading a team to enhance cybersecurity and operational management.

Posted 6/11/2026full-timeRemote • 🇨🇴 ColombiaLeadWebsite

Tech Stack

Tools & technologies
AWSCloudCyber Security

About the role

Key responsibilities & impact
  • - Own the design, roadmap, and execution of the client's infrastructure and cybersecurity programs, aligned to HIPAA, NIST, SOC 2, PCI, and internal InfoSec standards
  • - Oversee secure-by-default architectural design across all platforms
  • - Manage infrastructure budget, team resourcing, and resource allocation
  • - Serve as a strategic partner to product, legal, and engineering leadership
  • - Lead, mentor, and manage the Infrastructure and Security team with sprint-based delivery practices and measurable throughput
  • - Drive a shift from reactive to proactive operations by building organizational visibility into workload, capacity, and priorities
  • - Own the InfraSec support request intake and triage process
  • - Establish cross-functional prioritization cadence with Engineering, Product, Data, and Leadership
  • - Act as a hands-on technical leader contributing directly to security and infrastructure design, review, and implementation
  • - Serve as senior escalation point for complex deployments, secure architecture, and incident resolution
  • - Champion engineering self-service for routine InfraSec operations with appropriate guardrails
  • - Maintain cybersecurity policies and documentation aligned with applicable standards
  • - Own audit readiness for HIPAA, SOC 2 Type 2, PCI SAQ-D, and internal InfoSec assurance engagements
  • - Lead Vanta implementation and ongoing compliance automation
  • - Lead third-party and vendor risk assessments; maintain the vendor security catalog
  • - Conduct ongoing vulnerability assessments, threat detection, and mitigation
  • - Own and maintain incident response and disaster recovery plans
  • - Drive continuous risk-management education across the organization
  • - Manage identity and access governance across employees, contractors, and systems
  • - Maintain endpoint protection coverage (CrowdStrike, Tenable) aligned to applicable control frameworks

Requirements

What you’ll need
  • - 7+ years of experience in infrastructure and cybersecurity, with at least 3 years in a people management or team lead capacity in a regulated environment
  • - Deep expertise in HIPAA, NIST, and SOC 2 compliance
  • - Proven track record building operational processes: intake triage, sprint-based delivery, cycle time measurement, and cross-functional prioritization
  • - Strong technical fluency across cloud infrastructure (AWS preferred), endpoint security, access management, and compliance tooling (Vanta, CrowdStrike, Tenable)
  • - Excellent communication skills — able to translate security posture and risk for non-technical stakeholders and executive leadership
  • - Experience managing vendor risk assessment programs and third-party security reviews
  • - US East Coast timezone overlap required
  • - Professional certifications preferred: CISSP, CISM, or GIAC GCED

Benefits

Comp & perks
  • - SOC 2 Type 2: zero critical Trust Services Criteria exceptions
  • - PCI SAQ-D: 100% annual submission with no major gaps
  • - Incident response: 90% of incidents triaged within SLA (high severity within 1 hour)
  • - Infrastructure uptime: 99.9% monthly across mission-critical systems
  • - Sprint delivery: 90% of committed items delivered on time
  • - Change failure rate: less than 5% of changes resulting in an incident or unplanned rollback.

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
infrastructure managementcybersecuritycompliancevulnerability assessmentsincident responsedisaster recoveryaccess managementrisk managementsecure architecturesprint-based delivery
Soft Skills
leadershipcommunicationmentoringstrategic partnershiporganizational visibilitycross-functional collaborationproblem-solvingprocess improvementteam managementeducation
Certifications
CISSPCISMGIAC GCED