Director of IT & Security, CISO
$224k - $260kRedox
Director Of It & Security, Ciso
Redox is on a mission to accelerate healthcare's transformation with useful data. Redox Engine, a flexible interoperability platform, connects and powers real-time healthcare data exchange. With just one connection, data can be orchestrated across a growing network of 12,000+ systems and organizations, including 100+ electronic health record systems (EHRs). Redox processes over 1.2 billion messages per month across our health tech vendor, provider, payer, EHR, and life sciences customers.
Opportunity & Impact
Redox is seeking a hands-on director of IT & security, CISO to own enterprise security, cloud, and application security, and corporate IT. This role reports directly to the CTO and is a core member of the technology leadership team.
You will lead security engineering, security operations, and corporate IT while partnering closely with Engineering, Platform, and Operations to embed security and reliability into how Redox builds and runs software. Success in this role means strong security posture, resilient internal systems, and an employee experience that just works—without slowing the business down.
Job Responsibilities
- Security Strategy & Leadership: Own end-to-end information security strategy across cloud, application, infrastructure, and corporate environments. Define a pragmatic security roadmap aligned to business risk, regulatory requirements, and engineering velocity. Serve as the executive owner for security posture, risk management, and incident response. Act as a trusted advisor to the CTO and executive team on security, risk, and operational tradeoffs.
- Security Engineering & Devsecops: Drive a DevSecOps-first operating model, embedding security into CI/CD pipelines, infrastructure as code, and developer workflows. Partner deeply with engineering leadership to make security scalable, automated, and measurable. Lead threat modeling, secure design reviews, and risk assessments for new platform initiatives. Champion policy-as-code, guardrails, and automation over manual process.
- Cloud, Application & Infrastructure Security: Own security architecture and operations for a primarily AWS-based environment. Lead application security programs, including secure SDLC, dependency scanning, SAST/DAST, penetration testing, and vulnerability management. Own identity and access management strategy with Okta as the backbone. Ensure strong detection, alerting, and response across endpoints and cloud workloads (e.g., CrowdStrike, RAD).
- Security Operations & Incident Response: Build and run effective security operations, including monitoring, investigation, incident response, and post-incident learning. Lead incident response for both security and IT incidents, serving as the calm point of accountability. Run tabletop exercises and continuously improve response playbooks. Manage vendor relationships, including CrowdStrike, Flashpoint, RAD, and Okta.
- Corporate It & Enterprise Systems: Own corporate IT strategy and execution, focused on reliability, security, and employee productivity. Lead end-user computing, device management, endpoint security, identity lifecycle management, and access controls. Oversee IT systems, including identity, email, collaboration tools, endpoint management, and SaaS access governance. Drive automation and standardization across onboarding, offboarding, access management, and device lifecycle. Partner with People Ops, Legal, and Finance on IT processes, audits, and vendor management.
- Compliance, Risk & Healthcare Context: Own healthcare-related security and compliance programs (e.g., HIPAA, SOC 2). Translate regulatory requirements into practical, engineering-friendly controls. Lead third-party risk management and vendor security reviews. Support customer security reviews and serve as an executive point of contact on security matters.
- Team Leadership & Culture: Build, lead, and mentor a high-performing team spanning security engineering, security operations, and IT. Create a culture where security and IT are seen as enablers, not blockers. Establish clear ownership, measurable outcomes, and high operational standards. Be visible, decisive, and calm under pressure.
Required Skills & Experience
- 10+ years in information security, IT, or related technical leadership roles, including 5+ years of people management, ideally in healthcare technology SaaS.
- Proven experience leading security engineering, security operations, and corporate IT in a cloud-native SaaS environment.
- Direct experience in healthcare or other highly regulated industries.
- Track record of successfully implementing DevSecOps practices.
- Deep hands-on experience securing AWS environments.
- Strong understanding of endpoint security, identity systems, and modern SaaS IT stacks.
- Practical knowledge of tools such as CrowdStrike, Okta, Flashpoint, RAD, and related platforms.
- Strong foundation in application security, cloud security, and infrastructure as code.
- Strong collaborator with engineering, platform, and operations teams.
- Clear, direct communicator who can articulate risk without theatrics.
- Comfortable making tradeoffs and prioritizing based on real-world risk.
- Builder mindset with a bias toward automation and scale.
Preferred Skills & Experience
- Proven experience securing autonomous agentic loops and tool-calling frameworks. Deep understanding of indirect prompt injection and designing "human-in-the-loop" guardrails for agent-driven actions.
- Technical expertise in securing the model context protocol (MCP), specifically regarding context isolation, sandboxing, and identity propagation between LLMs and private data sources.
- Direct experience migrating security programs to Vanta or similar automated GRC platforms. Ability to architect "continuous compliance" by integrating cloud, identity, and developer tools for automated evidence collection.
- Hands-on application of the NIST AI RMF, OWASP Top 10 for LLMs, etc within a production environment.
Software Platform / Tools
- Required: Crowdstrike, AWS, Okta
- Preferred: Vanta
Compensation
The base salary range for this position is expected to be between $224,000 - $260,000 per year. The base salary range is subject to change and may be modified in the future. The actual offer may vary depending on multiple factors unique to each candidate, including but not limited to the level of job-related knowledge, skills, qualifications, education/certification, and interview assessment. Please note that the compensation details listed above reflect the base salary only. Redox offers a total rewards package that includes stock options and employee benefits for full-time employees. Our total rewards package includes the following: benefits & perks.
Benefits & Perks
- 100% remote first culture (must be based in the US)
- Unlimited flexible time off
- 15+ observed holidays
- Rest & recharge days (guaranteed a 3-day weekend each month)
- R&charge (6 weeks paid sabbatical + stipend)
- 401k match 50% for up to 8% on day 1
- Medical/dental/vision benefits on day 1
- HSA & FSA, life, disability, medical travel & employee assistance program
- Paid parental leave (16 weeks)
- Productivity stipend & wellness fund
- Redox issued MacBook
- Virtual and/or in-person team & company events
- Stock options
- Employee referral bonus program
- ...welcome all healthcare professionals to join our thriving community and contribute to our pursuit for clinical excellence. Director of IT Cyber Security Provides strategic leadership for enterprise-wide cybersecurity and HIPAA compliance within a hospital environment....Suggested
$160k - $180k
Alumni Ventures is searching for a Director of Information Technology in Pleasanton, CA. The ideal candidate will modernize IT functions, manage remote and onsite technical support, and oversee security compliance across the organization. This role requires a mix of hands...SuggestedRemote job- An innovative energy company is seeking a Director of Information Technology to lead application development and IT infrastructure. This individual will provide strategic and operational leadership across software engineering and cybersecurity while mentoring established...SuggestedRemote job
$160k - $180k
Alumni Ventures is seeking a Director of Information Technology in Cupertino, California. This hybrid role involves managing a unified IT function, modernizing technical infrastructure, and improving security practices. The ideal candidate will have over 10 years of IT...SuggestedRemote job- Cheil is seeking an experienced IT Director in Plano, Texas. The ideal candidate will manage IT operations, ensuring network security, budget optimization, and team leadership. Responsibilities include overseeing on-premise and cloud infrastructure, enforcing security policies...SuggestedLocal area
- ...MANTECH seeks a motivated, career and customer-oriented Information System Security Officer (ISSO) to join our team in Winchester, VA. Responsibilities include, but are not limited to: Ensure the day-to-day implementation, oversight, continuous monitoring, and...Work at office
- ...MANTECH seeks a motivated, career driven, and customer-focused Information System Security Officer (ISSO) to join our team in Columbia, MD . You will play a critical role in supporting enterprise infrastructure capabilities for a global, mission-focused workforce...Work at office
- ...professionals for this role. Description: What We’re Doing: Lockheed Martin’s, Rotary & Mission Systems (LM RMS), F-35 Cyber Security invites you to step up to one of today’s most daunting challenges: the protection of exquisite government capabilities leading to...Full timeWork at officeRemote workRelocationFlexible hoursShift workDay shift3 days per week
- ...Lockheed Martin - US to connect them with exceptional professionals for this role. Description: Lockheed Martin is a Cyber Security pioneer, partner, innovator and builder. Our amazing employees are on a mission to make a difference in the world and every single...Full timeWork at officeRemote workRelocationFlexible hoursShift work3 days per week
$127.94k - $186.6k
...hackajob is collaborating with Excella to connect them with exceptional professionals for this role. Lead Information Systems Security Officer (ISSO) Arlington, Virginia, United States, Hybrid Excella is a transformative technology firm that helps...Work from homeHome officeFlexible hours$102k - $120k
...application due to a disability, contact this employer to ask for an accommodation or an alternative application process. Information Security Officer Full Time Lakehurst, NJ, US 30+ days ago Requisition ID: 1251 Salary Range: $102,000.00 To $120,000.00 Annually JOB...Full timeWork experience placementLocal areaWeekend work3 days per week- ...motivated, career and customer-oriented Senior Information Systems Security Officer (ISSO) to join our team in Washington, D.C . This is... ..., computer engineering, computer science, or a closely related IT discipline. ~ Significant experience navigating technical...Work at officeRemote work
- ...Job Title: Chief Information Security Officer (CISO) Location: Houston, TX (On-Site) Type: Full-Time About Us: Our Client is... ...directly to the CIO (or CEO), you will collaborate with leadership, IT teams, and external stakeholders to safeguard the...Full timeRemote work
- ...Covenant HR is seeking a Field CISO for a remote position in the United States. The ideal candidate will serve as a trusted executive advisor on cybersecurity strategy and governance for client leadership teams. This role involves building executive relationships, expanding...Remote work
- ...Brief Overview of Position: Strategic Operational Solutions (STOPSO) is seeking candidates for an Information Security Officer role to support a federal client where we are focused on delivering innovative operations and solutions through proven successful methods...Full timeContract workFixed term contract
- ...leading integrated healthcare systems. The CISO will play a pivotal role in advancing... ...Looks Like The ideal Chief Information Security Officer (CISO) will embody Mass General Brigham... ...and Audit committees and the Board of Directors on Cyber Security issues and policies....Temporary workWork at officeRemote workFlexible hoursShift work
- ...Career Opportunities: Chief Information Security Officer (CISO) (5967) Requisition ID 5967 -Posted - Permanent Contract Be part of a new era in... ...organization, ensuring strong alignment between cybersecurity, IT, and engineering functions. While this is a leadership and governance...Permanent employmentContract workFor subcontractorRemote workWork from homeFlexible hours
$160k - $192k
...Job Description: The Chief Information Security Officer (CISO) serves as the leading authority on information security within the State University... ...strategic objectives. Provide leadership and direction to IT and Security Operations teams to administer security...Full timeWork at officeImmediate startMonday to FridayNight shift- ...Information Security Officer The ISO will be responsible for protecting the bank's sensitive... ...and execution of security controls for IT systems, networks, cloud environments,... ...to executive management and the board of directors. Manage the business continuity/disaster...Work at office
- ...GENERAL STATEMENT OF DUTIES The Chief Information Security Officer (CISO) is the executive leader responsible for all cybersecurity and data... ...continue uninterrupted in the event of an attack Work with other IT and business leaders to establish a robust Disaster Recovery...Work at office
- ...seeking a strategic and experienced senior IT security leader to serve as our next Chief... ...opportunity follows the planned retirement of our CISO after 12 years of impactful service and... ...and delivering them to the board of directors and/or audit committee. Ensuring...Contract workRelocation packageFlexible hours
- ...design, and implement AI strategies that are secure, scalable, and human-centered. We believe... ..., responsible innovation. And through it all, we lead with purpose, love, and... ...This is not a traditional enterprise CISO role where you inherit a legacy infrastructure...Full timeFor contractorsRemote workDay shift
- ...Chief Information Security Officer (CISO) Houston, TX (Hybrid) Reports to: Chief Information Officer (CIO) . The Opportunity This role goes beyond traditional security leadership. You will: Architect the security foundation for a rapidly evolving...
- ...Chief Information Security Officer (CISO) We're hiring a Chief Information Security Officer (CISO) to own and elevate our security program at... ...infrastructure design, security, integrations and partnerships, and more (IT, Data, and Security). Own our SOC 2 Type II program end-to...Sleeping nights
$150k - $200k
...Chief Information Security Officer (CISO) Vistrada is looking to hire strong Chief Information Security Officers (CISO). The CISO will provide... ...coordination and oversight experience. ~ Strong understanding of IT Risk and components, including application, infrastructure,...Work experience placementRemote workFlexible hours- ...process. Chief Information Security Officer Full-time Regular Senior... ...Information Security Officer (CISO) to lead the company’s global... ...cybersecurity risks across IT, cloud, engineering,... ...Audit Committee and Board of Directors. Translate technical risk into...Full timeContract work
$120.2 per hour
...CHIEF INFORMATION SECURITY OFFICER Camden, NJ Job ID 63... ...Short Description The CISO will be responsible for implementing... ...all of legal and regulatory, IT, and cybersecurity risk to information... ...this to the board of directors and other senior stakeholders....Hourly payFull timeContract workPart timeFor contractorsWork at officeFlexible hoursShift work- ...Information Security Officer The Information Security Officer (ISO) at German American Bank is responsible for establishing and coordinating... ...to the Technology Services department – ensuring security and IT activities are completed in a coordinated, prioritized and...Temporary workWork experience placement
- ...Chief Information Security Officer (CISO) Are you interested in working with the World's AI-first Quality Engineering Company? Ready to advance... ...business objectives. The CISO will directly own enterprise IT security, internal security operations, and overall cyber risk...Casual workLocal areaFlexible hours
- ...to serve as its next Chief Information Security Officer (CISO). As a critical member of the senior leadership... ...-performing, customer-centric team of directors and architects who are viewed as... ...Strengthen third-party risk management for both IT-sourced technologies and the medical...Temporary workWork experience placementWork at officeRemote workWorldwideRelocationFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Director of IT & Security, CISO. Be the first to apply!
- remote ciso United States
- ciso United States
- information systems security officer United States
- business information security officer United States
- business information security officer biso United States
- chief information security officer United States
- information security officer United States
- chief information security officer ciso United States
- information security officer iso United States
- IT security United States



