Quartet is a leading tech-enabled behavioral health company that works with health plans, systems, and provider groups to deliver speed to quality behavioral health care for all. Through sophisticated data and analytics, along with personalized services, Quartet exists to advance quality care as defined by four measures: speed to care, seamless patient experiences, improved health outcomes, and affordability. The company is backed by venture funding from top investors including Oak HC/FT, GV (formerly Google Ventures), F-Prime Capital Partners, Polaris Partners, Deerfield Management, Echo Health Ventures, Centene Corporation, and Independence Health Group.

We are deeply committed to growing a diverse team and an equitable and inclusive culture where all Quartetians are empowered to be themselves and do their best work. We know this is vital in realizing our mission to improve the lives of people with mental health conditions. As part of our commitment to building a diverse team, we have signed the Parity Pledge and actively encourage applicants of all backgrounds to apply.

About the team & Opportunity: 

You will join a growing Security Engineering team, tasked with managing (and more importantly) mentoring a team of 4 Security Engineers. In addition to helping shape Quartet's Security strategy, you'll work cross-functionally with teams (Engineering, Product, Legal) to ensure compliance from a technical perspective.

Qualifications:

• 3+ years of people management experience (within an engineering or security-related role)
• 3+ years working in a HIPAA/HITRUST compliant environment
• Strong understanding of AWS and Cloud Security practices

Responsibilities:

• Define and execute strategy for Quartet’s security risk management program to include organizational security, information technology, application security, and compliance.
• Drives action through strong advocacy of the value of security.
• Serve as cybersecurity risk and subject matter expert and advisor for senior management on emerging threats, attacks, vulnerabilities and security concerns.
• Be aware of the developing security threats, and help the business understand the potential security implications related to ongoing projects or 3rd party vendors.
• Lead annual SOC2 renewal and HITRUST certification
• Ensure engineering teams are empowered with both the education and tools needed to incorporate security into development practices and automated build & deployment processes.
• Communicate security policies and procedures to all personnel and monitor compliance.
• Help build security awareness, education, and annual training for various Quartet business units.
• Mature security processes to ensure our systems are monitored for security alerts, anomalies are tracked, and procedures followed when alerts triggered.
• Drive collaboration on information security across the enterprise, including the legal, information technology, engineering, care navigation, sales, product management and finance.
• Oversee the coordination of internal and external audits or assessments of platform or internal business practices.
• Develop threat models and engage in ongoing development discussions on secure architecture
• Manage and coordinate security incident response
• Lead bi-weekly sprints, standups and grooming sessions.
• Lead brown bag security topics and help build the security community of practice at Quartet.
  

Employee Benefits for Quartet include: Unlimited vacation, volunteer opportunities, team events, mental healthcare coverage of 15 free therapy sessions + unlimited copay reimbursements, medical, dental + vision coverage, generous parental and military leave, commuter benefits, 401K, and stock option grants.