Information Technology Director
Roots Community Health · Oakland, CA · 3 wk ago
On-siteInformation TechnologyFull-time
Description
The Information Technology (IT) Director provides strategic and operational leadership for a multi-site IT infrastructure, security framework, and service delivery model supporting a 250+ person healthcare organization. Reporting directly to the Chief Operating Officer (COO), this position serves as a senior internal advisor and a critical organizational bridge, integrating secure IT operations with regulatory compliance to deliver a business-enabling technology framework.
Lead Day-to-Day Operations
- Manage and develop a team of 6–8 IT staff, setting priorities, monitoring performance, and building a culture of accountability and responsive support.
- Report directly to the Chief Operating Officer (COO) to align technology infrastructure with organizational strategy and operational realities.
- Serve as the senior internal IT leader and trusted advisor to the CEO, COO, and CMO, translating organizational needs into practical technology plans and operational improvements.
- Legal & Executive Escalation: Partner with the COO and executive leadership to support information security, risk management, and ongoing policy development, surfacing complex regulatory issues that require escalation to specialized legal counsel or cyber liability brokers.
- Serve as the designated HIPAA Privacy Officer, with responsibility for privacy-related policies, workforce privacy training, privacy incident coordination, and support for patient rights processes.
- Operationalize the HIPAA Privacy Officer function by collaborating closely with the clinical services department to ensure privacy training, policies, and patient rights processes align with clinical operations.
- Maintain responsibility for infrastructure that supports the organization’s internally-developed applications, including coordination with the Data & Analytics team and contracted software developers on security, access, and infrastructure decisions.
- Develop, maintain, and improve IT and privacy policies, procedures, standards, and documentation appropriate for a regulated healthcare environment.
- Manage privacy-related vendor coordination, including support for Business Associate Agreement processes and third-party accountability in collaboration with legal and compliance stakeholders.
- Support audits, assessments, and compliance reviews by organizing documentation, coordinating stakeholders, and tracking remediation activities.
Requirements
- Strategic Bridging & Alignment: Ability to connect high-level risk management, compliance mandates, and operational goals with daily technical execution. Skilled at translating complex technical or security vulnerabilities into clear, actionable operational plans for the COO and non-technical stakeholders.
- Culture of Distributed Accountability: A collaborative manager focused on building a structured, responsive internal IT environment. Capable of coaching and mentoring staff while establishing clear ownership over systems to reduce reliance on C-suite for routine decisions.
- Proactive Governance Focus: A mindset driven by system design, prevention, and formalization rather than reactive firefighting. Exceptional capability in establishing and executing predictable governance structures, including annual risk assessment calendars, policy review cycles, and audit readiness.
- Cross-Departmental Collaboration: Highly effective at working across departments, specifically partnering with Clinical Services to ensure health information privacy protocols support, rather than hinder, high-touch community care and clinical quality workflows.
- Adaptable Enterprise Stewardship: Thrives in a dynamic, mid-sized, highly regulated environment. Possesses the agility to scale infrastructure, manage vendor ecosystems, and optimize cloud platforms alongside rapid organizational growth.
- Experience Required: 7–12 years of progressive IT experience, including at least 3 years in a leadership or management role, with a demonstrated readiness to scale into advanced enterprise management.
- Education: Bachelor’s degree in Computer Science, Information Systems, or a related technical discipline, or equivalent practical experience.
- Experience Leading IT Operations: In a healthcare, non-profit, or other regulated environment.
- Experience Managing and Developing a Team: While balancing strategic planning with hands-on operational oversight.
- Experience with Cloud-Based Workplace Technologies: Preferably Google Workspace and related SaaS platforms.
- Experience Working with Executive Leadership: Communicating effectively with non-technical stakeholders.
- Experience Coordinating with External Advisors: Such as a vCISO, legal counsel, managed service providers, auditors, or compliance consultants.
- Experience Developing or Maintaining Business Continuity Plans: In a multi-site or regulated setting.
- Experience Developing Policies: Supporting Audits or Assessments, and Driving Operational Improvements in a Regulated Setting.
- Experience Hiring, Developing Organizational Design: With Defined Areas of Responsibility, and Building Out a Team.
- Preferred Experience: Experience Serving as, Supporting, or Partnering Closely with a HIPAA Privacy Officer Function.
- Experience in a California Healthcare Environment: Including Familiarity with Applicable State Privacy Requirements.
- Experience Leading IT Operations in a Multi-Site Environment.
- Experience in a Mission-Driven or Community-Based Non-Profit Organization.
- Familiarity with Common Control Frameworks or Operational Good Practices: Such as NIST CSF or CIS Controls.