Chief Information Security Officer (Director-Level)

Who You Are

You’re a collaborative professional, driven by the potential to make a meaningful impact in healthcare. The challenges of healthcare don’t deter you—instead, you see them as opportunities to find innovative solutions that benefit the partners, people, and communities we serve. Honest Health’s commitment to purpose, innovation, communities, and kindness resonates with you, inspiring you to bring commitment, creativity, and compassion into your work. You’re ready to join a team focused on reimagining primary care for a healthier future that benefits all.

Does this sound like you? If so, we should talk.

Who We Are

At Honest Health, we believe in purpose and partnership to lead the transformation in primary care. Our team of healthcare experts and clinicians collaborates with a range of stakeholders—from health systems, physician organizations, and payers to providers, practices, and patients — to deliver innovative solutions that elevate care, control costs, and support long-term health. Guided by our core values, we’re creating a value-driven model that creates lasting benefits for everyone, now and into the future.

For us, that's just an Honest day’s work.

Your Role

This director-level position will lead the development and implementation of the organization’s information security strategy to protect data, ensure regulatory compliance, and manage cybersecurity risks. The Chief Information Security Officer (CISO) role will require a leader with deep knowledge of healthcare regulations and standards such as HIPAA, HITRUST, and NIST. The role will report to the Chief Information Officer and will require the ability to be strategic in vision and practical in execution, helping Honest to continuously evolve and strengthen our security posture.

Primary Functions of the Chief Information Security Officer Include:

• Develop and continuously evaluate and evolve Honest’s information security roadmap and posture.
• Develop, implement, and monitor a comprehensive enterprise information security and risk management program, in collaboration with our Compliance team and other business partners.
• Align and prioritize actions within the cyber security program that align with our organization’s objective goals, meets the needs of our partners and focuses on data protection, threat management, and risk mitigation.
• Ensure compliance with healthcare regulations including HIPAA, HITRUST, and other applicable standards.
• Oversee incident response planning, and the investigation of any security incidents, ensuring timely reporting to the executive team and all relevant stakeholders.
• Collaborate with our business partners across …