• Leads the planning, implementation, documentation, and testing of security systems • Develops security standards, policies, and procedures • Partners with business units to understand technology needs and to integrate security across various business use cases • Determines security requirements by evaluating business strategies and needs; researching information security standards; plan and collaborate with team members in conducting system security and vulnerability analyses and risk assessments • Prepares security reports by collecting, analyzing, and summarizing data and trends • Maintains relevant job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations • Enhances department and organization reputation by accepting ownership for accomplishing tasks; exploring opportunities to add value to job accomplishments • Assist with ad-hoc operational tasks as required

Who is Spring Fertility? We are a passionate, dedicated team of leading physicians and scientists who have trained at some of the world’s top research hospitals and fertility centers. Together, we are building the fastest-growing fertility group in the country, grounded in clinical excellence and innovation. We deliver deeply patient-centric, individualized, and compassionate care, recognizing that every journey is unique. Our mission is to partner with patients to help them achieve their goals, whatever those may be. We believe everyone deserves the opportunity to build a family if they choose, and our team is committed to guiding and supporting patients every step of the way. Why should you join our team? We are a mission-driven organization seeking motivated, high-performing professionals who are eager to innovate and make an impact. As we build a first-class fertility practice, we balance excellence with a culture that values collaboration, positivity, and enjoyment in the work we do. We are growing rapidly and are deeply committed to the professional and personal development of our team. Guided by optimism, compassion, and teamwork, we are united by a shared dedication to putting patients first. Role Summary As the Information Security & Network Services Manager at Spring, you will lead the charge in building secure, resilient, and high-performing IT infrastructure across our nationwide healthcare network. This pivotal role blends strategic oversight of network engineering with hands-on leadership in information security and compliance. You’ll ensure seamless connectivity for our clinics, HQ, and remote teams while safeguarding sensitive data and maintaining regulatory certifications. This role combines strategic leadership with direct, hands-on technical execution. While you’ll set the vision for secure and resilient IT infrastructure, you’ll also be deeply involved in day-to-day operations - personally architecting solutions, troubleshooting complex issues, and driving key initiatives. As an individual contributor, you’ll leverage your expertise to solve critical challenges and deliver tangible results, ensuring that Spring’s network and security posture remain robust and responsive. This role is ideal for someone who thrives on both high-level planning and rolling up their sleeves to make an impact at every level. Network Engineering & Connectivity - WAN / LAN Architecture: Design, implement, and maintain network infrastructure across HQ, clinics, and data centers. - Firewalls & Security Appliances: Manage Meraki-based infrastructure and related security devices. - VPN & Remote Access: Ensure secure connectivity for remote staff and teleworkers. - Wireless Infrastructure: Oversee enterprise-grade Wi-Fi (Meraki) across all locations. - Lead the networking and security aspects of new site builds, ensuring robust connectivity and compliance with organizational security standards from initial design through to deployment. - Telephony / Unified Communications: Manage VoIP systems, Teams Calling, and cloud telephony integrations. - Network Monitoring & Optimization: Track uptime, performance metrics, and troubleshoot issues proactively. - SD-WAN / MPLS / Internet Providers: Handle vendor relationships and monitor SLA compliance. - Tier 3 Escalations: Resolve complex routing, firewall, and WAN failures. - Redundancy & Resiliency: Guarantee high availability across East, Central, and West regions. Information Security & Compliance - Security Controls: Implement and monitor firewalls, endpoint security, SIEM, and SOC operations. - Incident Response & Vulnerability Management: Lead investigations, forensics, and remediation efforts. - Identity & Access Management: Administer IAM, RBAC, and privileged account controls. - Regulatory Compliance: Conduct HIPAA security audits and risk assessments. - Vendor Security Reviews: Manage Business Associate Agreements (BAAs) and third-party risk assessments. - Security Awareness Training: Develop and deliver programs to educate staff on best practices. - Maintain certifications by adhering to standards like HITRUST, SOC2, ISO, and NIST. Education, Licenses, Certifications and Other Requirements - Bachelor’s degree in Information Technology, Computer Science, or related experience. - Advanced certifications (CISSP, CISM, CCNP, CCSP) required - 7+ years of experience in senior network engineering and information security roles. Ideally in a healthcare environment. - Deep expertise of Meraki infrastructure, SD-WAN technologies, and enterprise security frameworks. - Strong understanding of HIPAA compliance and healthcare IT environments. Employment Type This is a full-time remote exempt position. This does require 25% travel to our sites. Compensation The salary range for this role is $120,000-$160,000 annually. Salary is based on several factors including job related knowledge and skill set, depth of experience, certifications and/or degrees. *You must reside in and intend to work from one of the following states to be eligible for remote employment - AZ, CA, CO, CT, DE, FL, GA, IL, IN, MA, NJ, NV, NY, OR, PA, TX, VA, WA Benefits Investing in You Today and Tomorrow Supporting your well-being - Competitive medical, dental, and vision plans - Paid time off to recharge and enjoy personal time - Access to BetterHelp therapy sessions for mental and emotional wellness - Commuter benefits and discounted rates on home, auto, and pet insurance Investing in your future - 401(k) with up to a 4% company match - Comprehensive fertility and parental leave benefits - Career development opportunities in a fast-growing organization - Employer-paid life and disability insurance *Temporary and contract roles may not be eligible for all benefits listed above Don’t have it all? We still welcome you to apply! At Spring Fertility, we believe that everyone who wants a family deserves to have one, regardless of gender, sexual orientation, race, ethnicity, or religion. Just as we acknowledge and value the diversity of goals, life experiences, and unique paths to parenthood among our patients, we also actively celebrate diversity within our organization. We are an equal opportunity employer, and we are committed to a safe and inclusive work environment for all. We recognize that diversity among our team allows us to not only more effectively serve our patients, but also to advance innovation and opportunity within our field. We encourage qualified applicants of every background, ability, and life experience to apply to our employment opportunities. We are scientists. We are humanists. We are passionate about fertility. The Human Resources Department will make reasonable efforts in the recruitment process to accommodate applicants with disabilities. If selected for an interview, and you require accommodation, please notify the recruiter who reached out to you. If you need assistance in navigating our website and the job application process, please give us a call! CCPA disclosure notice here.

• Drive the evolution of GitLab's Security Risk Management (SRM) stage into a world-class platform for vulnerability analysis and remediation at enterprise scale. • Own the technical strategy for processing, analyzing, and remediating vulnerabilities across massive codebases and complex enterprise environments. • Design distributed systems architecture capable of processing vulnerability data from thousands of repositories, millions of commits, and complex dependency graphs in real-time. • Drive storage system decisions for multi-petabyte security datasets, balancing query performance, cost efficiency, and data retention requirements across time-series, graph, and document storage paradigms. • Architect scalable analysis pipelines that can ingest vulnerability feeds, correlate findings across multiple security tools, and provide actionable intelligence to both security teams and individual developers. • Lead the technical evolution from monolithic security scanning to microservices-based, event-driven vulnerability management systems. • Champion high-performance systems thinking throughout the team, establishing patterns for horizontal scaling, efficient resource utilization, and fault-tolerant distributed computing. • Establish technical standards for system observability, chaos engineering, and performance optimization in security-critical systems. • Mentor and develop senior engineers in distributed systems design, database optimization, and large-scale system architecture. • Drive architectural decision records (ADRs) for major technical decisions, particularly around data storage, processing frameworks, and system boundaries. • Own the end-to-end user journey (in partnership with PM) for both AppSec professionals managing enterprise-wide risk and developers receiving actionable security feedback in their workflow. • Design APIs and interfaces that abstract complexity while providing the power and flexibility that security professionals demand. • Collaborate with Product Management, UX and Product Design to translate complex technical capabilities into intuitive user experiences. • Establish feedback loops with large enterprise customers to ensure our technical solutions scale with their organizational complexity. • Evaluate and integrate cutting-edge technologies in areas such as graph databases, stream processing, machine learning inference at scale, and distributed caching, in collaboration with GitLab’s Infrastructure, Data and AI teams. • Own the technical roadmap for vulnerability correlation, risk scoring, and automated remediation workflows. • Drive partnerships with other GitLab stages to ensure seamless integration across the DevSecOps platform. • Lead incident response for availability and performance issues in customer-facing security systems.

• Measure, monitor, and report on information security risks • Review and report on vendor/third party risk to support vendor risk management activities • Engage staff and/or vendors to develop information security risk mitigation plans to address risks identified in Vendor risk reviews • Monitor and report on information security risk mitigation plans to ensure timely execution • Engage employees in the management of information security risk and ensure they are aware of their accountabilities with regard to information security risk management • Regularly assess and report to management any exceptions to information risk management policies, procedures and limits • Engage with the Enterprise Risk Management office to ensure information risk management policies, procedures and limits are aligned with Enterprise Risk Management policies and guidance • Contribute and provide input to the development of operational department goals • Acts as technical expert in functional domain • Recommends technical advancements to improve CareSource customer and partner experiences • Perform any other job related instructions as requested