Security, Incident, & Threat Management Team at Ellkay LLC

ELLKAY started out providing connectivity solutions to laboratories and within a few years, grew to also provide data management solutions to ambulatory organizations. ELLKAY is now a trusted data management partner in five healthcare segments. ELLKAY’s solutions continue to serve laboratories and ambulatory practices and have expanded to empower hospitals and health systems, healthcare IT vendors, ambulatory practices, health plans, and other healthcare organizations with cutting-edge technologies and solutions that drive their growth and interoperability strategies.

Today, ELLKAY remains true to our core values, building strong partner relationships and offering unparalleled service and support while providing innovative, scalable solutions to the challenges our customers face in today’s data-rich world.

ELLKAY's experience, customer-focused approach, and reputation for innovation, speed, and accuracy differentiate ELLKAY as a premier partner for your interoperability needs and data management strategy.

Job Description:

The Incident, Threat, and Change Management Team Lead is responsible for overseeing security incident/threat operations and enterprise change management across systems that create, receive, maintain, or transmit electronic protected health information (ePHI). This role ensures that security events, production changes, and clinical operations are coordinated to protect patient safety, maintain HIPAA and HITRUST compliance, and support continuity of care.

Essential Duties & Responsibilities:

• Lead the identification, triage, containment, investigation, and remediation of security incidents involving PHI/ePHI in alignment with HIPAA Security Rule incident procedures (45 CFR §164.308).
• Coordinate breach risk assessments and documentation to support timely notification obligations to affected individuals and HHS OCR, and state regulators where applicable.
• Operate and mature threat detection capabilities (SIEM/SOAR, EDR, email security, IDS) across EHRs, clinical systems, and connected medical devices, ensuring rapid response to threats that could impact care delivery.
• Own the formal change management process (ITIL‑aligned) for infrastructure, applications, and security controls in in‑scope HIPAA/HITRUST environments, ensuring risk assessment, approvals, testing, and back‑out plans for all production changes.
• Chair the Change Advisory Board (CAB) with representation from clinical operations, privacy, compliance, biomedical engineering, and IT to ensure that changes do not adversely affect patient care or ePHI availability.
• Ensure all changes to HITRUST‑assessed systems are tracked, documented, and, when required, reported in a manner that maintains the accuracy of the HITRUST control environment and certification.
• Integrate incident post‑mortems with change management by linking incidents to specific changes, feeding lessons learned into standard change templates, hardening baselines, and release criteria.
• Align incident and change management processes with the NIST Cybersecurity Framework functions (Identify, Protect, Detect, Respond, Recover) and NIST SP 800‑61 incident response lifecycle.
• Develop and maintain HIPAA‑aligned policies, procedures, and runbooks for incident response, emergency mode operations, and change control, including documentation and retention for audit readiness.
• Provide regular metrics and reporting (MTTD, MTTR, incident volume, change success rate, change‑related incidents) to security, compliance, and clinical leadership, highlighting impact on patient safety and regulatory risk.
• Partner with Privacy Officer, Compliance, Legal, and vendor management to coordinate third‑party incident handling and ensure vendors meet contractual and HIPAA/HITRUST requirements.
• Lead and participate in periodic incident response and disaster recovery exercises focused on clinical workflows and ePHI availability.

Qualifications:

• 7+ years in information security or IT operations in a healthcare provider, payer, health IT vendor, or other HIPAA‑regulated environment.
• Demonstrated leadership in security incident response and/or SOC operations with direct experience managing incidents involving PHI/ePHI.
• Strong background in formal change management (ITIL, ITSM platforms) for regulated environments, with experience supporting HIPAA and HITRUST assessments.
• Working knowledge of HIPAA Security and Breach Notification Rules, HITRUST CSF domains (especially Incident Management, Business Continuity & DR, and Information Protection Program), and NIST CSF.
• Experience interfacing with clinical leadership, Privacy/Compliance, Legal, and external auditors/assessors.
• Familiarity with AI governance or security controls for AI/ML systems.
• Relevant certifications (e.g., CISA, CISM, CRISC, CISSP, CDPSE, HITRUST CCSFP).

Benefits:

ELLKAY offers a comprehensive and competitive benefit package that starts day one!

Including:

• Medical, Dental, and Vision benefits
• Employer-paid Life and LTD
• 401k w/ matching – once eligibility is met
• Work/life balance
• Paid Volunteer Program
• Flexible working hours
• Generous FTO
• Remote work options
• Employee Discounts
• Parental Leave

Our awesome culture includes:

• Working with talented, collaborative, and friendly people who love what they do
• Professional growth within
• Innovation environment
• On site in HQ Free daily lunches

Additional information

At ELLKAY, we are committed to operating as a hybrid workplace, offering employees flexibility in how they structure their time between in-office and remote work. We recognize the significance of fostering connections, collaboration, and creativity within our office culture and its positive impact on our business. Our philosophy of operating as a hybrid workplace underscores our dedication to enabling employees to tailor work-life balance to their individual preferences. For those who do not live within 40 miles of one of our offices, we are open to considering remote work for candidates whose skills and experience strongly align with the role. While we prioritize a hybrid work environment for most roles, we understand the importance of flexibility and are open to remote work for specific positions and specialized skill sets.

For more information on our company, visit www.ELLKAY.com.

ELLKAY LLC is a Smoke-Free Workplace.

ELLKAY, LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.