We are seeking a hands-on Senior Manager, IT & Engineering to build and lead Adoreal's IT function from the ground up while providing technical leadership across a portion of our software engineering organization. This is a hybrid role that will own our security posture, compliance programs, and core infrastructure, shaping and executing the company's overall IT and security strategy. You'll directly hire and manage a small IT team and partner closely with engineering leadership on secure development practices and architectural decisions. The team needs a player/coach with .NET experience ready to grow as our product, teams, and revenue grow. In this role, you'll collaborate with team members and vendors to design, develop, and deploy top-tier healthcare software. You'll provide technical leadership, work closely with architects and stakeholders, and ensure scalable, high-performance solutions. The ideal candidate brings strong technical depth, a strategic mindset, and the ability to clearly communicate complex topics to both technical and non-technical stakeholders-including executive leadership and the board. US- Remote - Chicago, IL. The ideal preference is to have a candidate near Chicago, IL, where our future HQ will be located. Key Responsibilities Security & Compliance • Own and execute the organization's security strategy, including incident response, vulnerability management, and threat detection • Lead HIPAA compliance initiatives by conducting risk assessments and implementing required security controls • Develop and maintain security policies, procedures, and documentation, including the Security Incident Response Plan • Conduct breach risk assessments and manage notification procedures in compliance with HIPAA requirements • Maintain the Security Incident Register and ensure proper documentation of all security events Infrastructure & Operations • Oversee IT infrastructure including MDM, identity management, endpoint protection, and network security • Manage the transition from BYOD to company-owned devices, implementing secure device lifecycle management • Implement and manage SSO, MFA, and privileged access management across the organization • Ensure business continuity through disaster recovery planning and regular testing Vendor & Third-Party Management • Develop and enforce contractor security policies and vendor security assessment frameworks • Manage vendor relationships for security tools, MDM platforms, and IT services • Conduct Business Associate Agreement reviews and ensure vendor HIPAA compliance Leadership & Communication • Report on security posture, incidents, and compliance status to executive leadership and the board • Lead security awareness training programs for all employees Engineering Partnership • Coordinate with engineering leadership on secure development practices and DevSecOps integration • Partner on architectural decisions for scalability, security, and performance of healthcare software systems • Contribute technical guidance on CI/CD standards, quality metrics, and cloud infrastructure where security and engineering intersect • Provide input on engineering best practices that affect compliance, data protection, and production stability • Design, develop, enhance, triage, and debug Web APIs using C# and .NET Core. Requirements • 5+ years of progressive IT devlopment experience with at least 2 years in a leadership or management role • At least 5 years writing and developing code with C#/.NET Core environments, Kubernetes, or microservices architectures • Deep expertise in information security, including incident response, vulnerability management, and security architecture • Demonstrated experience with HIPAA compliance in a healthcare or healthcare technology environment • Hands-on experience with MDM solutions (JumpCloud preferred), identity providers, and endpoint protection platforms • Strong understanding of cloud security (AWS preferred), network security, and modern threat landscape • Experience building and leading IT teams, including hiring and developing talent • Working knowledge of software engineering practices sufficient to partner effectively with engineering leadership on DevSecOps, secure SDLC, and production system reliability • Experience with human resources-related tasks including managing time-off requests, performance reviews, and interviewing & hiring • Excellent written and verbal communication skills, with the ability to present to executive and board audiences • Enthusiasm for rapid advancement in a dynamic startup environment, with a readiness to invest additional hours to complete tasks effectively • CISSP, CISM, or equivalent security certification • Experience building IT/security functions from the ground up at a growth-stage company • Familiarity with GDPR compliance (Adoreal has achieved GDPR compliance) • Experience with security monitoring tools such as Datadog, CloudWatch, and Cloudflare • Background in healthcare technology or regulated industries Benefits What We Offer At Adoreal, we believe in supporting our team's well-being and growth through comprehensive benefits and a collaborative, people-first culture. As a globally remote company, we prioritize flexibility, inclusivity, and teamwork rooted in the Adoreal principles. Benefits & Perks: • Healthcare coverage for you and your family • Paid time off (PTO) and paid holidays • Performance-based bonuses and company equity opportunities • Fully remote work environment with flexible schedules • Collaborative and thriving team culture guided by Adoreal's core values *We are not working with search firms for this role, thank you*