Hippa - Security Protegrity Resource

Job Title: HIPAA Security Expert / Protegrity Tokenization Platform LeadJob Overview: We are seeking a highly skilled HIPAA Security Expert and Protegrity Tokenization Platform Lead to ensure the organization’s compliance with the HIPAA Security Rule. This role involves serving as the technical owner of the Protegrity tokenization platform, which operates within a HIPAA-compliant security environment that leverages Azure cloud services, including Azure Databricks. The ideal candidate will possess a deep understanding of healthcare data protection regulations combined with hands-on experience in secure data architecture, tokenization services, and cloud security, contributing to the safeguarding of electronic Protected Health Information (ePHI) across the enterprise.Key Responsibilities:

• HIPAA Security & Compliance: Act as a subject matter expert (SME) in HIPAA Security Rule requirements, with a focus on cloud-based and analytics environments. Implement, monitor, and maintain compliance through administrative, physical, and technical safeguards. Support risk assessments, threat modeling, and remediation activities related to ePHI stored or processed in Azure Databricks and related platforms. Collaborate with Legal and Compliance teams to translate regulatory requirements into practical controls. Assist in internal and external audits, providing detailed technical documentation and evidence.
• Protegrity Tokenization Platform Ownership: Lead the architecture, configuration, and ongoing management of the Protegrity tokenization platform within a HIPAA-compliant environment. Ensure the secure tokenization of sensitive data before ingestion into storage and analytics platforms. Oversee platform upgrades, patch management, certificate and key lifecycle management, and configuration updates in line with security standards. Design tokenization policies, formats, and integration patterns that meet business, legal, and regulatory requirements. Partner with Data Engineering and Application teams to onboard new data sources and use cases.
• Azure, Databricks & Cloud Security: Work with cloud infrastructure teams to ensure Azure Databricks and supporting services comply with HIPAA security standards. Validate secure integrations, including network segmentation, private endpoints, encryption, and key management. Enforce identity and access controls, logging, and monitoring for ePHI access and processing. Support secure data lifecycle management—covering data ingestion, storage, processing, retention, and disposal.
• Security Architecture & Operations: Collaborate with Cybersecurity counterparts to align tokenization and data protection frameworks with enterprise security architecture. Support incident response, threat detection, and forensic investigations related to HIPAA environments. Develop and sustain architecture diagrams, runbooks, standard operating procedures, and incident documentation. Continuously evaluate and enhance the security posture, operational resilience, and scalability of data protection measures.

Qualifications:

• Bachelor’s degree in Information Security, Computer Science, Information Systems, or a related field, or equivalent experience.
• In-depth knowledge of the HIPAA Security Rule and healthcare data protection standards.
• Proven experience managing or supporting the Protegrity tokenization platform or comparable enterprise tokenization solutions.
• Strong background securing cloud environments, especially within Microsoft Azure.
• Familiarity with Azure Databricks or similar analytics platforms in regulated environments.
• Expertise in encryption, tokenization, key management, and secure data pipelines.
• Excellent collaboration, documentation, and communication skills.

Preferred Qualifications:

• Experience supporting HIPAA-regulated environments in healthcare, life sciences, or healthcare distribution industries.
• Knowledge of Azure security services such as Azure Key Vault, Private Link, Defender for Cloud, and Azure Monitor.
• Experience supporting compliance frameworks like HITRUST or SOC 2.
• Security or cloud certifications such as CISSP, CISM, HCISPP, or Azure Security Engineer.

Benefits & Career Development Opportunities:

• Opportunity to work at the forefront of healthcare data security and privacy.
• Collaborative environment promoting professional growth in cloud security and compliance.
• Access to cutting-edge cloud and security technologies, with ongoing training and certification support.
• Chance to influence enterprise-wide data protection strategies and compliance posture.