Springhealth66
Vice President, Information Security
otherfull-timeRemote
SALARY
Not listed
WORK TYPE
remote
JOB TYPE
full-time
INDUSTRY
healthcare
✦ AutoApply Let us apply to roles like this on your behalf.
Learn more
About the role
What You'll Do
Security Strategy & Leadership
- Develop and execute the enterprise information security vision, strategy, and multi-year roadmap.
- Serve as a trusted advisor to executive leadership and the Board on cybersecurity risks, trends, and investments.
- Establish security objectives, metrics, and reporting mechanisms aligned with business priorities.
- Drive a security culture across the organization that enables innovation while maintaining appropriate risk controls, including effectively communicating risks and changes in the risk landscape to leadership, the Board, and key stakeholders in clear, business-relevant terms.
Governance, Risk & Compliance
- Own the enterprise information security risk management program, including formal risk assessments, risk registers, and risk treatment plans.
- Ensure compliance with applicable frameworks and regulations, including SOC 2, ISO 27001, HIPAA, HITRUST, PCI DSS, GDPR, and CCPA.
- Oversee security audits, risk assessments, policy development, and remediation initiatives.
- Manage the Business Associate Agreement (BAA) program across the customer and vendor ecosystem.
- Maintain and test the enterprise Incident Response and Business Continuity programs.
- Drive continuous improvement of security controls and risk management practices.
Security Operations & Incident Response
- Oversee security operations, threat detection, vulnerability management, and incident response functions.
- Own the security operations center (SOC) function, including SIEM strategy, threat intelligence, and endpoint detection.
✦ Let us apply for you
We find roles like this and apply on your behalf. Cover letter written for each one. Plans from $15/mo. Cancel anytime.
Get AutoApply