Chief Information Security Officer / Remote / Local to LA

This well-established and innovative healthcare technology company, focused on improving the health and wellness industry, is looking to expand their team with a Chief Information Security Officer (CISO) to oversee the company’s cybersecurity, application security, and risk management strategies. This remote role offers the opportunity to develop and implement a comprehensive security plan and ensures the security and privacy of client data while aligning with the business’s growth.

Required Skills & Experience

• 12-15+ years of experience building and scaling information security, risk management, and compliance programs within large, complex organizations.
• Previous experience as a CISO or equivalent in a SaaS company or healthcare provider, with a preference for candidates with prior experience in digital health.
• Deep expertise in security, privacy, and IT audit frameworks, such as HITRUST CSF, HIPAA, and PCI regulations.
• Extensive experience with risk management, incident response, crisis management, threat intelligence, and developing secure business practices.
• Strong experience in technical security areas, including penetration testing, vulnerability management, mobile security, cloud security, and network security.
• Knowledge of secure coding practices, identity and access management (IAM), and security incident response.
• Proven ability to communicate complex security concepts to executive leaders, customers, and other non-technical audiences.
• Experience with high-velocity software deployment environments and the ability to drive security practices in agile organizations.
• Demonstrated people management skills with the ability to motivate, mentor, and grow a team of security professionals.
• A passion for helping private practices thrive in the mental wellness space.
• Bachelor's degree in a related field; advanced certifications such as CISSP, CISM, or CISA are preferred.

What You Will Be Doing

• 40% Cybersecurity & Application Security Strategy – Developing and executing long-term security vision, strategy, and roadmap aligned with company growth and product goals.
• 30% Risk Management & Compliance – Overseeing risk evaluations and implementing a robust risk management framework to mitigate security risks.
• 20% Team Leadership & Culture – Leading a team of security professionals and promoting a culture of security across the organization.
• 10% Incident Response & Crisis Management – Managing 24x7 security operations, security architecture, and contingency plans.

Daily Responsibilities

• 60% Oversee and execute the company’s cybersecurity and application security initiatives, ensuring data privacy and integrity for customers.
• 25% Manage security compliance, including ensuring HIPAA, HITRUST, and PCI regulations are met and certifications are maintained.
• 15% Provide thought leadership on security operations and advocate for the adoption of secure practices across teams.

The Offer

You will receive the following benefits :