Job Description
Job Description
See your work in a new light.
At LUX Infusion, we're reimagining infusion care to be more human, supportive, and connected. Inspired by lux—meaning light - we guide patients, providers, and partners through complex therapies with clarity, compassion, and confidence.
As a clinician-led, U.S.-based organization, we put people first - helping patients feel seen and supported through faster therapy starts, dedicated care coordination, and meaningful collaboration. Our commitment to inclusion, diversity, equity, and advancement (IDEA) is central to our culture, ensuring every team member feels valued and empowered to make a difference.
See your work in a new light.
At LUX Infusion, we're reimagining infusion care as something more human, more supportive, and more connected. We lead with compassion and clarity - helping patients feel confident in moments that matter, while giving providers and partners the trust and insight they need to deliver better outcomes.
We're looking for a Security Operations Manager who wants their work to mean something - someone who brings care, accountability, and purpose to what they do every day.
Why This Role Matters
Job Summary
The Security Operations Manager is responsible for leading and maturing the organization's
cybersecurity operations program with a primary focus on healthcare security, identity and access
management, Single Sign-On (SSO) strategy, threat detection, incident response, and regulatory
compliance. This role serves as both a technical leader and people leader, providing mentorship and
professional development to Security Analysts while establishing scalable security operations
capabilities across the enterprise.
The Security Operations Manager will oversee day-to-day security operations, security monitoring,
vulnerability management, incident response, identity security initiatives, and compliance activities
supporting HIPAA, HITECH, and other healthcare regulatory requirements. This position partners closely
with Infrastructure, Applications, Compliance, HR, and business stakeholders to ensure the
confidentiality, integrity, and availability of enterprise systems and Protected Health Information (PHI).
What You'll Do
Responsibilities include:
Security Operations Leadership
Lead and manage Security Operations (SecOps) activities across infrastructure, applications,
cloud platforms, and endpoints.
Develop and maintain security monitoring, threat detection, incident response, and security
governance processes.
Serve as the primary escalation point for complex security incidents and investigations.
Direct security event analysis, triage, containment, eradication, and recovery activities.
Establish operational metrics, dashboards, and KPIs to measure security effectiveness.
Drive continuous improvement initiatives to enhance enterprise cybersecurity maturity.
Coordinate security activities with managed security service providers and strategic security
partners.
Identity Security & SSO Program Management
Lead enterprise Identity and Access Management (IAM) strategy and implementation.
Design, implement, and maintain Single Sign-On (SSO) platforms and identity federation
technologies.
Manage security controls related to Azure AD/Entra ID, MFA, conditional access, RBAC, and
privileged access management.
Partner with application owners to onboard business-critical applications into SSO platforms.
Establish identity governance processes, user lifecycle management standards, and access
review programs.
Conduct identity risk assessments and develop remediation plans.
Oversee authentication modernization initiatives and Zero Trust security models.
Healthcare Security & Regulatory Compliance
Ensure compliance with HIPAA, HITECH, HITRUST, NIST CSF, and healthcare cybersecurity best
practices.
Lead security risk assessments and remediation planning.
Support internal and external audits.
Develop and maintain healthcare-focused security policies, standards, and procedures
Monitor controls protecting Protected Health Information (PHI) and Electronic PHI (ePHI).
Collaborate with Compliance, Legal, and Operations teams on security and privacy matters.
Participate in breach investigations, reporting requirements, and corrective action programs.
Threat Detection & Incident Response
Oversee SIEM, EDR, vulnerability management, email security, and threat intelligence platforms
Direct proactive threat hunting activities.
Lead cyber incident response exercises and tabletop simulations.
Manage forensic investigations and root-cause analysis efforts.
Coordinate post-incident reviews and remediation planning.
Maintain incident response playbooks and operational procedures.
Vulnerability & Risk Management
Direct vulnerability management programs across servers, endpoints, cloud environments, and applications.
Establish risk-based prioritization methodologies for remediation.
Oversee remediation tracking and reporting.
Evaluate new technologies, vendors, and cloud services for cybersecurity risk.
Conduct third-party security assessments and vendor reviews.
Team Leadership & Mentorship
Supervise, coach, and mentor Security Analysts and junior cybersecurity staff.
Develop career growth plans, training programs, and technical development pathways.
Conduct regular one-on-one meetings and performance coaching.
Provide guidance on incident investigations, technical analysis, and security operations best practices.
Foster a collaborative culture focused on continuous learning and operational excellence.
Create succession planning and cross-training opportunities within the security team.
Participate in recruiting, interviewing, onboarding, and workforce planning activities.
Security Awareness & Collaboration·
Promote cybersecurity awareness throughout the organization.
Deliver technical and non-technical security presentations.
Partner with Infrastructure, Application Development, Service Desk, and Compliance teams on security initiatives.
What We're Looking For
Bachelor's Degree in Cybersecurity, Information Technology, Computer Science, or related field
(or equivalent experience).
7+ years of progressive cybersecurity experience.
3+ years of experience leading security operations or security engineering initiatives.
Experience within healthcare, specialty pharmacy, or other highly regulated industries.
Hands-on experience implementing and administering enterprise SSO and IAM platforms.
Strong experience with:
Microsoft Entra ID (Azure AD)
Single Sign-On (SAML, OIDC, OAuth)
Multi-Factor Authentication (MFA)
SIEM platforms
EDR/XDR technologies
Vulnerability Management
Security Incident Response
Experience supporting HIPAA compliance and healthcare security assessments.
QUALIFICATIONS PREFERRED
CISSP
HCISPP
CISM
GIAC Certifications
Microsoft Identity & Access Administrator Certification
HITRUST experience
Healthcare cybersecurity leadership experience
Why LUX Infusion
At LUX Infusion, we believe infusion care deserves more light - more warmth, more clarity, and more connection.
Here, you'll find:
- Purpose‑driven work with real impact
- A patient‑first, clinician‑led culture
- Supportive, collaborative teammates
- The opportunity to grow with a company building something meaningful
Come help us elevate infusion care - and see what's possible when care comes first.
Pay Range/Rate$115,000—$135,000 USDPHYSICAL DEMANDS
The physical demands described here represent those required for an employee to successfully perform the essential functions of this role. Reasonable accommodations may be made to enable individuals with disabilities to perform these functions. If you require a reasonable accommodation during the application or interview process, please contact the LUX Infusion Talent Team at Careers@LUXInfusion.com or 954.385.7322 x 1425.
While performing the duties of this position, the employee may occasionally be required to stand, walk, or sit; use hands to finger, handle, or feel objects, tools, or controls; reach with hands and arms; climb stairs; balance; stoop, kneel, crouch, or crawl; and talk or hear. The employee may also be required to occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this role include close vision, distance vision, color vision, peripheral vision, depth perception, and the ability to adjust focus.
OTHER REQUIREMENTS
Employees are expected to:
- Participate annually in required legal and ethical compliance training
- Consistently act in compliance with LUX Infusion's legal, ethical, and compliance policies
- Adhere to all standards and procedures outlined in the LUX Infusion Compliance Manual
- Refrain from any behavior that could be considered unethical or unlawful
EXPECTATIONS FOR ALL EMPLOYEES
All LUX Infusion team members are expected to support the organization's mission, vision, and values by demonstrating integrity, dedication, compassion, and enthusiasm. This includes placing patients first, working collaboratively with a "stacked‑hands" mindset, and maintaining a consistent focus on quality, accountability, and continuous improvement.
GENERAL INFORMATION
The statements above are intended to describe the general nature and level of work performed by individuals in this role. They are not intended to be an exhaustive list of all responsibilities, duties, or skills required.
This role operates in a fast‑paced environment and requires the ability to prioritize competing demands, manage multiple tasks effectively, and seek guidance when appropriate.
Employees in this position may be required to assist directly - or coordinate appropriate assistance - to ensure access to LUX Infusion's services for individuals with disabilities, including patients, visitors, employees, or others.
LUX Infusion is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law.
