Director, Information Security

Bicycle Health

Completely RemoteFull TimeInformation Technology
Posted Today

Job description

Responsibilities

  • Architect the enterprise security posture and transition from startup to enterprise-grade security
  • Build the team, processes, and technical controls to protect sensitive patient data
  • Own the 12–24 month roadmap to achieve HITRUST Certification
  • Manage the intersection of HIPAA and 42 CFR Part 2 compliance
  • Balance AppSec/SecOps engineering with disciplined governance

Requirements

  • 10+ years in Information Security
  • Direct experience leading HITRUST CSF or SOC2 Type II certification in a healthcare context
  • Expert-level knowledge of HIPAA and working understanding of 42 CFR Part 2
  • Experience in a Series C+ startup environment
  • Strong background in AppSec and SecOps
  • Exceptional communication and leadership skills

Preferred Qualifications

  • Experience managing privacy nuances of controlled substance prescribing
  • CISSP, CISM, or CCSFP certifications

Benefits

  • Discretionary PTO plus 8.5 days of sick time and 10 paid holidays
  • Paid parental leave
  • 100% Employer Paid Medical, Dental, and Vision Insurance
  • Employer Paid STD & LTD
  • 401k
  • $50 monthly Remote Work Stipend

About the Company

Bicycle Health is a telemedicine group that specializes in the evidence-based treatment of individuals with Opioid Use Disorder using buprenorphine.

Skills & tools

Information SecurityHIPAAHITRUST

What the team is looking for

Use this list as a quick fit check before you apply.

  1. 0110+ years Information Security experience
  2. 02HITRUST or SOC2 Type II certification leadership
  3. 03HIPAA and 42 CFR Part 2 expertise
  4. 04AppSec and SecOps background
  5. 05Series C+ startup experience
ScoutJobsAd

Wake up to a shortlist, not a search results page.

ScoutJobs scores every new listing against your CV, salary floor and visa. A handful of real matches by morning.

Get your daily matches