Senior Director of Information Security | 15 to 20 YoE | US-based HealthTech Organisation | Bengalur

Role type : Security Leadership

Work location : Bengaluru

Our customer is a well-funded healthcare technology company dedicated to modernising physician practices and emergency departments through automation and advanced revenue cycle management. They enable care teams to efficiently scale high-quality, compliant care while improving operational efficiency and patient outcomes.

What You Need :

15+ years of overall experience; 10+ years contributing to / leading cybersecurity and information security, driving strategy and execution at scale.

Deep hands-on expertise across

information security, application security, cloud security, infrastructure security, and cybersecurity , including modern security architectures and zero-trust principles.

Strong experience in

Identity & Access Management (IAM) , privileged access controls, encryption, and secure authentication frameworks.

Proven success in securing cloud and hybrid environments ( AWS, Azure, GCP ) and managing enterprise-grade security tooling (firewalls, IDS / IPS, SIEM, endpoint protection).

In-depth understanding of

healthcare security frameworks and standards

HIPAA, HITECH, HITRUST, GDPR, and secure data exchange protocols (HL7, FHIR), along with EHR system security.

Experience leading

incident response, breach management, disaster recovery , and business continuity programs in regulated environments.

Strong leadership, communication, and cross-functional partnership skills — with a track record of building high-performing security, compliance, and risk teams while enabling business growth.

What You Will Do :

Lead and oversee the organisation’s end-to-end cybersecurity strategy and execution.

Enhance and scale security and monitoring platforms to ensure proactive threat detection and response.

Work closely with Product, Engineering, Data, and Security teams to embed security practices across the product and technology lifecycle.

Drive operational excellence in the identification, assessment, and mitigation of risk across systems and processes.

Increase efficiency and effectiveness across security operations through enhanced platforms, automation, and continuous improvement initiatives.