Senior Healthcare Cybersecurity & Operations Manager (Onsite)

About the role

Note: This role is onsite at least 4 days per week in Portsmouth, New Hampshire. ConvenientMD is seeking a Senior Healthcare Cybersecurity & Operations Manager to serve as a hands-on cybersecurity subject matter expert and trusted technical partner within our growing healthcare organization. This role is ideal for someone who can move fluidly between execution and influence - strengthening systems, assessing risk, supporting IT operations, and helping senior leadership understand how cybersecurity decisions impact the business, our teams, and patient care. This position is designed for someone who can operate in the details while also bringing the judgment, communication, and subject matter expertise needed to support broader technology decisions. The right person will be comfortable assessing risk, improving processes, responding to security needs, supporting infrastructure, and translating complex technical considerations into clear, business-relevant recommendations. This is not a traditional management role or a governance-only position. We are looking for a senior individual contributor who can serve as a trusted cybersecurity SME, operational problem-solver, and cross-functional partner. Governance, compliance, and documentation are important parts of the work, but the core need is healthcare cybersecurity expertise paired with practical IT operations experience. This role is not remote. This position is based onsite at ConvenientMD headquarters in Portsmouth, NH.

Responsibilities

• Healthcare Cybersecurity & Risk Management
• Serve as a key cybersecurity subject matter expert across ConvenientMD's healthcare technology environment.
• Support the development, implementation, and ongoing improvement of cybersecurity strategies, policies, procedures, and controls to protect organizational data, clinical systems, and sensitive patient information.
• Monitor, assess, and respond to cybersecurity risks, vulnerabilities, incidents, and emerging threats, coordinating remediation efforts with internal teams and external partners as needed.
• Apply healthcare-specific security and regulatory knowledge, including HIPAA, privacy, compliance, and risk management considerations, to support secure technology decisions.
• Help champion a culture of cybersecurity awareness and best practices across clinical, corporate, and technical teams.
• IT Operations, Infrastructure & Technical Execution
• Support secure and reliable IT operations across infrastructure, networking, platforms, hardware, devices, applications, and end-user environments.
• Partner with IT teams to identify operational gaps, strengthen systems, troubleshoot complex issues, and improve the overall stability and security of the technology environment.
• Evaluate tools, workflows, access controls, support trends, infrastructure needs, and healthcare technology requirements, including HIPAA, HITRUST , privacy, compliance, clinical operations, patient data protection, and regulated systems, to recommend practical improvements.
• Develop and perform a penetration testing schedule, partnering with internal teams and external vendors as needed to support timely remediation of identified vulnerabilities.
• Plan and execute an annual tabletop disaster recovery/business continuity exercise to test readiness, identify gaps, and strengthen organizational response planning.
• Assist with technology initiatives that require both cybersecurity insight and operational execution.
• Strategic Partnership & Business Influence
• Act as a trusted technical partner to IT leadership, including the CIO, by helping assess risk, frame options, and translate cybersecurity and infrastructure considerations into business-relevant recommendations.
• Partner with clinical, operational, and corporate stakeholders to ensure technology solutions are secure, scalable, practical, and aligned with patient care needs.
• Influence decisions through subject matter expertise, clear communication, risk analysis, and thoughtful recommendations.
• Support governance-related work where needed, including documentation, policy alignment, process improvement, and compliance readiness, while keeping cybersecurity and healthcare technology risk at the center of the role.
• Continuous Improvement & Documentation
• Analyze data, support trends, recurring issues, and risk indicators to identify opportunities for improvement.
• Develop and maintain clear documentation, including technical procedures, cybersecurity policies, user resources, and process materials.
• Support the creation of self-service resources and end-user guidance to i

Benefits

Additional Information

At ConvenientMD , we're on a mission to make good health more convenient for all - working to improve how patients and providers experience healthcare in New England. To support this belief, we're building a team of dedicated professionals who genuinely care about improving lives, are passionate about work that can make a difference, and are driven to learn from one another.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at convenientmd? Share your experience