IT Security Specialist responsible for day - to - day support of Hudbay’s IT security program and monitoring security risks. Collaborating on various projects to ensure security best practices are followed across the organization.
About the role
- Director of Information Security & IT leading H1's security-first technology operations. Working at the intersection of data, AI-technology, and healthcare to improve patient outcomes.
Responsibilities
- Own and operate H1’s Information Security program end-to-end, including governance, policy development, risk management, and continuous improvement.
- Lead all certification and audit programs (SOC 2 Type II, ISO 27001, HIPAA and future frameworks as needed), ensuring ongoing audit readiness and measurable control effectiveness.
- Oversee incident response, change management, problem management, and technical risk mitigation programs.
- Serve as the executive security leader supporting enterprise sales cycles, including RFP responses, due diligence reviews, and direct engagement with customer security stakeholders.
- Act as a trusted advisor to executive leadership on cyber risk strategy, compliance posture, and regulatory alignment.
- Lead global IT operations, including end-user support, identity and access management, device management, and business continuity practices.
- Drive operational excellence across IT service delivery with clear KPIs, incident reduction, and measurable reliability improvements.
- Own vendor management and technology spend governance across IT and security systems.
- Establish operating models that improve transparency, accountability, and technical execution across business units.
Requirements
- 10+ years of experience in Information Security and technology leadership roles
- Demonstrated ownership of security governance, audit programs, and regulatory compliance frameworks
- Experience operating in healthcare, health-tech, life sciences, or other regulated data environments
- Experience leading incident, change, and problem management programs
- Experience managing distributed teams and cross-functional technical organizations
- Proven ability to partner with Sales and executive leadership to support enterprise growth
- Relevant certifications such as CISSP, CISM, ISO Lead Implementer, or AWS certifications preferred
Benefits
- Full suite of health insurance options, in addition to generous paid time off
- Pre-planned company-wide wellness holidays
- Retirement options
- Health & charitable donation stipends
- Impactful Business Resource Groups
- Flexible work hours & the opportunity to work from anywhere
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Cybersecurity Engineer specializing in Risk Management Framework operations and project management for federal clients. Role involves collaboration and leadership across multiple cybersecurity initiatives.
Manager overseeing Command Systems hardware engineering at Northrop Grumman. Driving hardware design, development, and integration for various defense projects.
Técnico em Segurança do Trabalho realizando visitas técnicas e treinamentos para elaboração do PGR e NR's. Atuando na área de segurança do trabalho na empresa Perfil Medicina.
Security Sergeant at Busch Gardens ensuring safety for guests and employees. Leading the security team in a fast - paced amusement park environment with a focus on guest service and safety.
Identity & Access Management Engineer at Farfetch, enhancing security operations in luxury e - commerce. Collaborating with engineers and stakeholders for scalable IAM solutions.
Cybersecurity & Information Technology Faculty position at Austin Community College. Instructing students on cybersecurity principles and practices in a multicultural setting.
Technical Engineer providing cybersecurity expertise and collaborating with sales teams for Power Grid Cybersecurity solutions. Supporting customers in the transition to secure digital power grids.
Privileged Access Security Architect designing and scaling enterprise Privileged Access Management with CyberArk. Driving automation, secure cloud adoption, and audit - ready controls across hybrid environments while reducing privileged risk.
Associate Cybersecurity Consultant at Datacom working in Wellington or Auckland, delivering managed security services and advising clients on cybersecurity strategy.