Information Security Specialist

Summary

Join our team as a Senior Information Security Specialist and make a tangible impact on our growing organization. Based remotely with occasional travel to Tampa, FL (within 100-mile radius), you will play a key role in strengthening our security posture and ensuring compliance. You will collaborate with cross-functional teams, support the design and maintenance of our Information Security Program, and lead incident response efforts. This role requires experience in regulated industries and relevant certifications. We offer a collaborative culture, opportunities for professional development, and the chance to work with diverse technologies.

Requirements

• Bachelor's degree (or equivalent experience preferred)
• Relevant certifications such as CISA, CISM, GCED , or similar
• 2+ years of direct experience in information security and 4+ years in IT infrastructure or systems
• Experience implementing and maintaining security controls in regulated environments (e.g., healthcare, banking, financial services)
• Working knowledge of standards like HIPAA, NIST, PCI-DSS, or GLBA
• Ability to lift up to 40 lbs. occasionally (e.g., IT equipment)

Responsibilities

• Act as a collaborative security advisor to departments across the organization, translating compliance needs into actionable security controls
• Support the design, maintenance, and continuous improvement of our Information Security Program to align with standards such as HIPAA, GLBA, NCUA , or PCI-DSS
• Monitor security systems, investigate alerts, and lead incident response efforts
• Partner with IT and business stakeholders to manage access controls, ensure secure system configurations, and standardize security practices
• Review and support vendor integrations, remote access, and third-party connections for security and compliance
• Assist in the planning and remediation of security assessments, penetration tests, and vulnerability scans
• Conduct training and awareness initiatives to build a security-first culture among staff
• Evaluate new security technologies and make recommendations based on practicality and fit for a mid-sized organization
• Maintain thorough documentation to support audits, risk assessments, and compliance reporting

Preferred Qualifications

• Experience in smaller organizations where flexibility and cross-functional collaboration were key to success
• Familiarity with both technical and administrative safeguards to protect PII, PHI, and financial data
• Strong troubleshooting skills and a hands-on approach to problem-solving
• Demonstrated ability to interpret complex regulations and turn them into operational procedures
• Experience supporting or leading security audits and regulatory examinations
• Knowledge of IAM, vulnerability management tools, encryption, firewalls, and endpoint security
• Clear, proactive communication skills and a team-focused mindset

Benefits

• The opportunity to have a real voice and impact in a growing organization
• A collaborative culture that values accountability, integrity, and trust
• Exposure to diverse technology stacks and security challenges
• A commitment to professional development and continuous learning