Director of IT Security Operations chez Claritev
Claritev · Work From Home, États-Unis d'Amérique · Remote
- Senior
At Claritev, we pride ourselves on being a dynamic team of innovative professionals. Our purpose is simple - we strive to bend the cost curve in healthcare for all. Our dedication to service excellence extends to all our stakeholders -- internal and external - driving us to consistently exceed expectations. We are intentionally bold, we foster innovation, we nurture accountability, we champion diversity, and empower each other to illuminate our collective potential.
Be part of our amazing transformational journey as we optimize the opportunity towards becoming a leading technology, data, and innovation voice in healthcare. Onward and Upward!!!
JOB SUMMARY: We're seeking a decisive, hands-on leader to drive our global Security Operations strategy. You will lead a high-performing team responsible for 24×7 monitoring, detection engineering, incident response, and operational resilience. This role blends strategic vision with technical depth, ensuring measurable risk reduction and continuous improvement across our security landscape. This role collaborates across departments to ensure alignment with business objectives.
JOB ROLES AND RESPONSIBILITIES:
1. Lead and mentor SOC analysts and engineers, fostering a collaborative, learning-driven culture.
2. Define and execute a multi-quarter roadmap for detection, automation, and response workflows aligned to business risk and threat landscape.
3. Establish and track KPIs/KRIs (e.g., MTTD, MTTR, ATT&CK coverage, false positive rates) with executive-ready reporting.
4. Own the detection engineering pipeline and alerting strategy; drive high-fidelity detections mapped to MITRE ATT&CK.
5. Conduct threat hunts and integrate CTEM/purple team outcomes to close detection gaps.
6. Lead major incident response efforts, ensuring cross-functional coordination and post-incident forensics.
7. Manage the SOC technology stack (SIEM, EDR, SOAR, etc.), prioritizing automation and enrichment to reduce analyst toil.
8. Expand telemetry coverage and optimize data quality, retention, and cost efficiency.
9. Evaluate and integrate new security tools; manage vendor relationships, SLAs, and QBRs.
10. Partner with GRC to support SOC 2, ISO 27001, HIPAA/HITRUST, and other regulatory requirements.
11. Collaborate across Security, Infrastructure, and Risk teams to reduce attack surface and drive remediation.
12. Select, develop, and evaluate staff to ensure the efficient operation of department.
13. Collaborate, coordinate, and communicate across disciplines and departments.
14. Ensure compliance with HIPAA regulations and requirements.
15. Demonstrate Company's Core Competencies and values held within.
16. Please note due to the exposure of PHI sensitive data -- this role is considered to be a High Risk Role.
17. The position responsibilities outlined above are in no way to be construed as all encompassing. Other duties, responsibilities, and qualifications may be required and/or assigned as necessary.
1. Lead and mentor SOC analysts and engineers, fostering a collaborative, learning-driven culture.
2. Define and execute a multi-quarter roadmap for detection, automation, and response workflows aligned to business risk and threat landscape.
3. Establish and track KPIs/KRIs (e.g., MTTD, MTTR, ATT&CK coverage, false positive rates) with executive-ready reporting.
4. Own the detection engineering pipeline and alerting strategy; drive high-fidelity detections mapped to MITRE ATT&CK.
5. Conduct threat hunts and integrate CTEM/purple team outcomes to close detection gaps.
6. Lead major incident response efforts, ensuring cross-functional coordination and post-incident forensics.
7. Manage the SOC technology stack (SIEM, EDR, SOAR, etc.), prioritizing automation and enrichment to reduce analyst toil.
8. Expand telemetry coverage and optimize data quality, retention, and cost efficiency.
9. Evaluate and integrate new security tools; manage vendor relationships, SLAs, and QBRs.
10. Partner with GRC to support SOC 2, ISO 27001, HIPAA/HITRUST, and other regulatory requirements.
11. Collaborate across Security, Infrastructure, and Risk teams to reduce attack surface and drive remediation.
12. Select, develop, and evaluate staff to ensure the efficient operation of department.
13. Collaborate, coordinate, and communicate across disciplines and departments.
14. Ensure compliance with HIPAA regulations and requirements.
15. Demonstrate Company's Core Competencies and values held within.
16. Please note due to the exposure of PHI sensitive data -- this role is considered to be a High Risk Role.
17. The position responsibilities outlined above are in no way to be construed as all encompassing. Other duties, responsibilities, and qualifications may be required and/or assigned as necessary.
