Director Enterprise Security Program Management

Overview

At SCA Health, we believe health care is about people - the patients we serve, the physicians we support and the teammates who push us forward. Behind every successful facility, procedure or innovation is a team of 15,000+ professionals working together, learning from each other and living out the mission, vision and values that define our organization.

As part of Optum, SCA Health is redefining specialty care by developing more accessible, patient-centered practice solutions for a network of more than 370 ambulatory surgical centers, over 400 specialty physician practice clinics and numerous labs and surgical hospitals. Our work spans a broad spectrum of services, all designed to support physicians, health systems and employers in delivering efficient, value-based care to patients without compromising quality or autonomy.

What sets SCA Health apart isn't just what we do, it's how we do it. Each decision we make is rooted in seven core values:

• Clinical quality
• Integrity
• Service excellence
• Teamwork
• Accountability
• Continuous improvement
• Inclusion

Our values aren't empty words - they inform our attitudes, actions and culture. At SCA Health, your work directly impacts patients, physicians and communities. Here, you'll find opportunities to build your career alongside a team that values your expertise, invests in your success, and shares a common mission to care for patients, serve physicians and improve health care in America.

At SCA Health, we offer a comprehensive benefits package to support your health, well-being, and financial future. Our offerings include medical, dental, and vision coverage, 401k plan with company match, paid time off, life and disability insurance, and more. Please visit, https://careers.sca.health/why-sca, to learn more about our benefits.

Your ideas should inspire change. If you join our team, they will.

Responsibilities

The Director of Enterprise Security Program Management is responsible for establishing and operating a cohesive, enterprise-level security program management capability that ensures security leadership strategy, priorities, and intent are translated into coordinated, measurable, and predictable execution across the Enterprise Security Office.

Serving as the Enterprise Security Program Manager, this role acts as the connective tissue between strategy and delivery-driving alignment, sequencing, and accountability across identity, security operations, governance, risk, compliance, resilience, and cybersecurity initiatives. This leader provides enterprise visibility into execution progress, risks, dependencies, and outcomes, ensuring security initiatives advance as an integrated portfolio rather than isolated efforts.

Key Responsibilities:

Enterprise Security Program Leadership

• Serve as the Enterprise Security Program Manager, accountable for orchestrating execution across all Enterprise Security domains.
• Translate CISO and security leadership priorities into clearly defined, sequenced, and coordinated programs of work.
• Ensure enterprise security initiatives are executed in a disciplined, risk-aligned, and auditable manner.

Strategic Alignment & Execution

• Align security programs with enterprise risk priorities, regulatory commitments (e.g., HIPAA, SOX), and NIST CSF objectives.
• Maintain continuous alignment between security strategy, operating charters, roadmaps, and day-to-day execution.
• Enable informed leadership decision-making by surfacing tradeoffs, risks, and dependency impacts early.

Program & Portfolio Governance

• Own the Enterprise Security program portfolio, including intake, prioritization, sequencing, and dependency management.
• Establish and operate program governance frameworks, cadence, and standards for tracking milestones, risks, and outcomes.
• Prevent execution fragmentation by ensuring initiatives are integrated across teams and delivery partners.

Integration & Dependency Management

• Actively manage interdependencies across Identity & Access Management, Security Operations & Engineering, Governance, Risk & Compliance, and Business Continuity & Disaster Recovery.
• Drive cross-functional coordination with IT, Infrastructure, Cloud, Engineering, Clinical Operations, and Optum/UHG stakeholders.

Execution Transparency & Maturity

• Provide consistent, executive-level visibility into security program health, delivery progress, and risk posture.
• Establish repeatable, scalable delivery practices that improve execution maturity and reduce ad hoc or reactive work.
• Continuously improve enterprise security delivery discipline and reporting.

Scope of Influence

Enterprise Security programs and initiatives spanning Identity & Access Management; Cybersecurity Operations & Engineering; Governance, Risk & Compliance; Business Continuity & Disaster Recovery; and regulatory, audit, and risk-driven initiatives.

Qualifications

Required Qualifications

• 10+ years of experience in program, portfolio, or transformation leadership within security, technology, or regulated environments.
• Proven ability to lead enterprise-scale, multi-workstream initiatives.
• Strong functional fluency across cybersecurity, identity, risk, and compliance domains.
• Demonstrated experience operating in highly regulated environments (healthcare preferred).
• Exceptional executive communication and stakeholder management skills.

Preferred Qualifications

• Experience aligning security programs to NIST CSF, SOX, HIPAA, or similar frameworks.
• Prior experience standing up or maturing an enterprise security PMO or security program management function.
• Experience operating within complex, hybrid enterprise environments.

Success Measures (What "Good" Looks Like)

• Security initiatives progress predictably and transparently.
• Leadership has clear line-of-sight from strategy to execution.
• Reduced duplication and fragmentation across security efforts.
• Improved delivery confidence for audits, regulatory commitments, and executive reporting.
• Enterprise Security delivery becomes coordinated, intentional, and scalable.

USD $165,000.00/Yr. USD $185,000.00/Yr.