Program Director - Information Security

Overview

US Anesthesia Partners is the highest-quality single-specialty anesthesia practice in the United States, with over 6,000 employees distributed across 12 states. Our clinical and non-clinical staff support each other as they work toward a common vision: Empowering people to advance exceptional care.

POSITION SUMMARY: The Program Director – Information Security is responsible for establishing, maturing, and driving consistent execution and reporting across USAP’s Information Security programs. This role partners closely with Information Security leadership and cross-functional technology and business stakeholders to ensure security initiatives are clearly defined, measurable, predictable, and transparently reported to executive leadership and governance bodies.

This position serves as a senior program execution and reporting leader, ensuring Information Security programs have documented scope, clear accountability, defined KPIs, and visible maturity metrics. The role operates with executive sponsorship and acts on behalf of Information Security leadership to coordinate execution, track progress, surface risks, and communicate outcomes across the organization.

This is an individual contributor role requiring strong executive presence, healthcare and information security experience, and the ability to operate effectively across organizational boundaries without direct authority.

Job Highlights

ESSENTIAL DUTIES AND RESPONSIBILITIES: (The ideal candidate must be able to complete all physical requirements of the job with or without a reasonable accommodation)

Information Security Program Definition & Maturity

• Establishes and maintains a structured portfolio of Information Security programs, including documented purpose, scope, ownership, and success measures.• Partners with Information Security leadership to define program KPIs and business-as-usual performance metrics.• Assesses and documents program maturity, including gaps in technology, process, and staffing, and ensures findings are aligned to strategic roadmaps and investment planning.• Supports the evolution of the Information Security program landscape by identifying opportunities to improve clarity, consistency, and execution maturity.

Program Execution Oversight & Accountability

• Drives accountability across Information Technology and Information Security teams to ensure milestones, commitments, and timelines are met.• Tracks program and project dependencies, risks, and issues that may impact delivery predictability and surface concerns to senior leadership.• Promotes predictable outcomes by reinforcing disciplined execution practices and minimizing unplanned scope or timeline drift.• Partners with IT Operations, Architecture, and Security teams to ensure alignment between execution plans and strategic objectives.

Executive, Audit, and Board-Level Reporting

• Leads the development of monthly and quarterly reporting on Information Security programs and initiatives, providing clear visibility into progress, performance, and risk.• Partners with Information Security leadership to prepare fact-based executive summaries and supporting materials for IT leadership, Shared Services leadership, Audit Committee,

Board of Directors, and Private Equity stakeholders.

• Synthesizes execution progress, program performance, and risk indicators into concise, level-appropriate reporting that supports informed decision-making.• Exercises judgment in highlighting material risks, gaps, and trends while reducing unnecessary noise.• Translates execution data into visually clear, engaging, and audience-appropriate presentations, including detailed operational views and high-level, board-ready summaries.• Occasionally presents program status and reporting materials alongside senior leadership when appropriate.

Cross-Functional Collaboration & Engagement

• Acts as the primary Information Security program coordination point across Information Technology, including:o Clinical Applicationso Corporate Applicationso Interoperabilityo Data & Analyticso IT Operations and Infrastructure
• Engages with peer leaders and teams as a trusted partner operating with executive sponsorship to advance Information Security initiatives.
• Surfaces cross-functional risks, conflicts, and priority misalignments to Information Security and IT leadership for awareness and resolution.

Qualifications

KNOWLEDGE/SKILLS/ABILITIES (KSAs):

• Bachelor’s degree in Information Technology, Information Security, or a related field, or equivalent professional experience required.
• 10+ years of experience in Information Security, IT program leadership, or related roles within healthcare or other regulated industries required.
• Demonstrated experience supporting C-suite leadership and executive governance forums required.
• Proven experience coordinating complex, cross-functional initiatives required.
• Prior experience interacting with Audit Committees or Boards of Directors preferred.
• Experience working with governance, program management, roadmap, and executive reporting tools (e.g., AuditBoard, Smartsheet, Aha! Roadmaps, Officetimeline, or similar platforms) preferred.
• Relevant professional certifications such as CISSP, CISM, PMP, or comparable credentials preferred.
• Strong understanding of Information Security programs, controls, and regulatory drivers within healthcare environments.
• Familiarity with healthcare compliance frameworks and expectations, including HIPAA, SOC 2, HITRUST, and NIST-based frameworks.
• Understanding of enterprise IT operating models, program management practices, and cross-functional dependency management.
• Executive-level communication, synthesis, and presentation skills.
• Proven ability to translate complex technical and compliance information into clear, fact-based executive reporting.
• Strong program execution discipline with a focus on accountability and predictable outcomes.
• Ability to influence and drive follow-through across teams without direct authority.
• High emotional intelligence and sound judgment in navigating complex organizational dynamics.
• Strong analytical skills with attention to detail and data integrity.
• Operate effectively across technical teams, senior leadership, and governance bodies.
• Represent Information Security leadership intent accurately and consistently in cross-functional engagements.
• Identify and surface risks, gaps, and execution challenges early.
• Maintain credibility and composure in executive, audit, and board-level settings.
• Manage multiple priorities in a dynamic environment while maintaining clarity and focus.

*The physical demands described here are representative of those that may need to be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Occasional Standing

• Occasional Walking

• Frequent Sitting

• Frequent hand, finger movement

• Use office equipment (in office or remote)

• Communicate verbally and in writing