Vail Health

• Utilize online systems, phone communication, and other resources to determine eligibility and benefits prior to scheduled appointments in accordance with Vail Health timelines • Accurately identify and assign payer plan codes in the organization’s electronic health record system • Verify medical necessity in accordance with Centers for Medicare & Medicaid Services (CMS) standards and communicate coverage and eligibility details to patients • Communicate with patients, physicians, clinicians, front-end staff, and translators to gather any additional required information • Identify and obtain missing patient demographic, insurance, or pre-authorization details • Coordinate benefits by determining primary and secondary liability when applicable • Obtain pre-certifications and pre-authorizations from third-party payers per payer requirements • Escalate complex cases and notify patients or physician offices of any issues impacting verification or eligibility • Communicate patient financial responsibility directly or partner with appropriate staff to review payment and financial assistance options • Demonstrate and uphold the principles of a Just Culture • Perform other duties as assigned; must remain HIPAA compliant

• Owns and leads the enterprise patch management and security health program across endpoints, servers, cloud platforms, network devices, and security technologies. • Designs, implements, and continuously improves secure configuration standards, patch deployment processes, automation, and change workflows in collaboration with Infrastructure and Cloud teams. • Defines, tracks, and reports enterprise patch compliance, configuration hygiene, and vulnerability exposure metrics to support risk‑based decision making. • Provides advanced (Tier 2/Tier 3) security operations support, investigating and responding to complex security alerts including malware, endpoint compromise, lateral movement, and anomalous behavior. • Correlates security telemetry across SIEM, EDR, email, cloud, and network platforms to identify, prioritize, and contain active and emerging threats. • Develops and maintains security operations with runbooks, incident response playbooks, escalation procedures, and detection tuning to improve operational effectiveness and signal quality. • Leads enterprise email security and social engineering defense, including monitoring and response for phishing, smishing, spoofing, and business email compromise (BEC). • Optimizes email and messaging security controls, including DMARC, DKIM, SPF, and anti‑phishing technologies, and analyzes attack trends to strengthen preventive controls and awareness initiatives. • Serves as a core incident responder, supporting containment, eradication, recovery, forensic evidence collection, log analysis, and root‑cause investigations for cybersecurity incidents. • Drives post‑incident reviews and continuous improvement, including lessons learned, control enhancements, and participation in on‑call incident response rotations. • Supports enterprise risk management, audit, and compliance initiatives by delivering defensible security metrics, dashboards, and executive‑level reporting. • Oversees and evolves the Vulnerability Management Program, including tooling strategy, continuous scanning, risk‑based prioritization, remediation SLAs, reporting, and validation of remediation effectiveness with system owners. • Collaborates cross-functionally and contributes to a security-first culture while supporting on-call rotations for 24/7 system needs.

• Resolve patient and insurance issues through taking phone calls, answering voicemails, taking action on all correspondence, and working with walk-in patients. • Verify patient account balances, take payments, enter payments into system. • Communicate and collaborate with team members for account resolution. • May be required to process mail and patient refunds, as well as perform cash posting, billing, and patient follow-up. • Handle 95% of calls presented to individual Customer Service Call Center queues. • Fully document account activity in patient accounting system.

• Resolve patient and insurance issues through taking phone calls, answering voicemails, taking action on all correspondence, and working with walk-in patients. • Manages daily call traffic flow and makes adjustments to phone coverage based on call traffic patterns to ensure 95% of calls presented to individual Customer Service Representative and Customer Service Call Center queue are handled. • Provides training and support to all Customer Service Specialist Representatives with oversight from PFS Management. • Verify patient account balances, take payments and applies payments and adjustments to patient accounts in the various computer systems. • Triage then communicate and collaborate with team members for account resolution. • May be required to process mail and patient refunds, as well as perform cash posting, billing, and patient follow-up. • Monitors and provides data to Management regarding quality and productivity of Customer Service Specialist calls for quality and training purposes.

• Owns the enterprise security architecture and multi-year roadmap, defining target state designs, security standards, and investment priorities; acts as a trusted advisor to executive leadership and drives cross functional delivery across IT, cloud, and product teams. • Establishes and governs enterprise identity, access, and data protection strategy, including SSO/MFA, federation (SAML, OIDC, OAuth), RBAC/ABAC, IGA lifecycle automation, privileged access management (PAM), and secrets and certificate management—enforcing least privilege and zero standing access at scale. • Defines and executes cloud security strategy across Azure and AWS by designing secure landing zones and zero trust guardrails; implements and operationalizes CSPM, CWPP, and CIEM capabilities to continuously reduce cloud risk and misconfiguration exposure. • Leads network and Zero Trust architecture modernization, including micro segmentation, NAC, next generation firewalls, secure remote access, and policy enforcement; delivers measurable isolation of critical systems and reduction of lateral movement risk. • Elevates security operations architecture and detection strategy, shaping SIEM and XDR correlation across endpoint, identity, email, cloud, and network telemetry; optimizes signal to noise, detection fidelity, and mean time to detect and respond (MTTD/MTTR). • Owns incident response architecture and organizational readiness, developing playbooks for containment, eradication, and recovery; ensures forensic readiness; leads post incident executive reviews and drives durable control improvements aligned to root cause analysis. • Scales security automation and orchestration through SOAR and API driven integrations, automating high impact detections, incident response workflows, access reviews, and vulnerability and patch pipelines; maintains policy as code and audit ready evidence collection. • Hardens enterprise email and social engineering defenses, enforcing DMARC, DKIM, and SPF, advanced BEC protections, and SEG/SASE integrations; analyzing attack trends to inform preventative controls and security awareness initiatives. • Owns enterprise vulnerability and patch governance, implementing risk based prioritization, remediation SLAs, executive dashboards, and validation of fixes; partners with Infrastructure and Cloud teams to continuously improve hardening baselines and exposure metrics. • Embed governance, risk, and compliance requirements into security architecture, aligning designs to HIPAA, HITECH, HITRUST, NIST CSF and 800 series controls, CIS Controls, and ISO 27001; delivering defensible metrics and board level reporting. • Applies healthcare specific security patterns for PHI, EMR/EHR platforms, and connected clinical devices, ensuring secure data flows, strong segmentation, and protection of patient care networks where applicable. • Leads security platform and vendor strategy, including evaluation and proof of value, selection, enterprise rollout, and optimization of EDR/XDR, SIEM, IAM/IGA/PAM, and cloud security platforms; demonstrate measurable risk reduction and return on security investment.