Chief Information Security Officer (CISO)
$237.5k - $390kHippo Insurance
Title: Chief Information Security Officer (CISO) Location: Austin, TX / Morristown, NJ (hybrid) Reports To: Chief Technology Officer About Hippo: Hippo was built on a promise: make homeownership effortless. Nearly a decade later, that mission still drives us. We use technology and data to help our customers stay ahead of problems and protect what matters most.
Today, that same tech-native approach powers our work beyond homeowners. Hippo operates as a diversified carrier platform, partnering with MGAs to deliver tailored program solutions that help them grow and deliver better customer experiences. Behind that work is a team that values ownership, curiosity, collaboration, and continuous improvement.
If you're energized by building what's next, we'd love to meet you.
About the Role:
Hippo is hiring a Chief Information Security Officer to lead cybersecurity strategy, security operations, and governance, risk, and compliance across the enterprise. You will be responsible for protecting Hippo's systems, data, and customers against an evolving threat landscape while ensuring the company meets its regulatory and compliance obligations as a publicly traded, multi-state insurance carrier.
This role owns Hippo's SOC 2 program, leads security operations, and drives compliance with applicable state and federal cybersecurity regulations. You will also own identity governance, privacy and data protection strategy, and third-party risk management. This is a high-visibility leadership role that requires equal fluency in security engineering, regulatory compliance, and executive communication.
About You:
You are a seasoned cybersecurity leader who has built and run security programs at a publicly traded, regulated company. You have navigated regulatory examinations and SOX audit cycles, and you can move seamlessly between a technical incident response scenario and a board presentation. You think in terms of risk, you quantify what you can, and you communicate what you can't with intellectual honesty.
You bring a builder's mindset to security. You understand that a great security program enables the business rather than slowing it down, and you know how to embed security into engineering culture without creating friction. Whether your background is in Insurtech, fintech, healthcare, or another heavily regulated sector, you understand multi-regulator environments and lead with clarity and high standards.
What You'll Do:
The Morristown, NJ base pay range for this role is $237,500 - $390,000. Exact compensation may vary based on several job-related factors that are unique to each candidate, including but not limited to: skill set, experience, education/training, location, business needs and market demands. Hippo is an equal opportunity employer, and we are committed to building a team culture that celebrates diversity and inclusion. Hippo's applicants are considered solely based on their qualifications, without regard to an applicant's disability or need for accommodation. Any Hippo applicant who requires reasonable accommodations during the application process should contact the Hippo's People Team to make the need for an accommodation known.
Hippo CCPA
Today, that same tech-native approach powers our work beyond homeowners. Hippo operates as a diversified carrier platform, partnering with MGAs to deliver tailored program solutions that help them grow and deliver better customer experiences. Behind that work is a team that values ownership, curiosity, collaboration, and continuous improvement.
If you're energized by building what's next, we'd love to meet you.
About the Role:
Hippo is hiring a Chief Information Security Officer to lead cybersecurity strategy, security operations, and governance, risk, and compliance across the enterprise. You will be responsible for protecting Hippo's systems, data, and customers against an evolving threat landscape while ensuring the company meets its regulatory and compliance obligations as a publicly traded, multi-state insurance carrier.
This role owns Hippo's SOC 2 program, leads security operations, and drives compliance with applicable state and federal cybersecurity regulations. You will also own identity governance, privacy and data protection strategy, and third-party risk management. This is a high-visibility leadership role that requires equal fluency in security engineering, regulatory compliance, and executive communication.
About You:
You are a seasoned cybersecurity leader who has built and run security programs at a publicly traded, regulated company. You have navigated regulatory examinations and SOX audit cycles, and you can move seamlessly between a technical incident response scenario and a board presentation. You think in terms of risk, you quantify what you can, and you communicate what you can't with intellectual honesty.
You bring a builder's mindset to security. You understand that a great security program enables the business rather than slowing it down, and you know how to embed security into engineering culture without creating friction. Whether your background is in Insurtech, fintech, healthcare, or another heavily regulated sector, you understand multi-regulator environments and lead with clarity and high standards.
What You'll Do:
- Further develop and execute Hippo's enterprise cybersecurity strategy, aligned with business risk appetite and regulatory requirements
- Build and lead the security operations function, including threat detection, incident response, vulnerability management, and threat intelligence
- Own Hippo's SOC 2 program end-to-end, including control design, evidence collection, readiness assessments, and auditor engagement
- Lead the governance, risk, and compliance function, maintaining the cybersecurity risk register, policy framework, standards, and control library
- Drive compliance with applicable state and federal cybersecurity and insurance regulations
- Support SEC cybersecurity disclosure obligations in coordination with Legal and Finance
- Lead identity governance, including access certification, privileged access management policy, and separation of duties enforcement
- Own privacy and data protection compliance strategy, partnering with Legal on data handling, breach notification, and policyholder data protection
- Manage the third-party and vendor cybersecurity risk management program
- Report to the Board of Directors and Audit and Risk Committee on cybersecurity posture, risk trends, and incident activity
- Provide second-line oversight and security control design input to the SOX ITGC program
- Build and lead the security engineering function, owning secure design standards and threat modeling practices that ensure security is embedded from architecture through to deployment
- Build, mentor, and develop the cybersecurity team and drive a culture of security awareness across the organization
- Lead cybersecurity budgeting, roadmap planning, and technology rationalization
- Own disaster recovery and business continuity planning across the enterprise, working closely with the CIO and CTO to drive regular testing, validate recovery capabilities, and ensure organizational resilience is aligned to business and cybersecurity risk
- Own the enterprise Incident Response Plan, lead the Security Incident Response Team (SIRT) across the full incident lifecycle from detection and containment through recovery and post-incident review, define severity classifications and escalation paths, and ensure cross-functional stakeholders (Legal, Compliance, IT, and executive leadership) are engaged appropriately during active incidents
- Drive a continuous improvement program with outcomes tracked to remediation and reported to the Audit and Risk Committee
- Lead the enterprise response to supply chain vulnerabilities across open-source dependencies and third-party service providers, owning risk assessment, mitigation, and remediation
- 10+ years of progressive experience in cybersecurity or information security, with at least 5 years in a senior security leadership role (CISO, VP of Security, or Head of Information Security)
- Experience at a regulated, publicly traded company, including direct involvement in SOX audit cycles
- Track record of building and managing security operations capabilities
- End-to-end ownership of a SOC 2 program, including control design, audit preparation, and remediation
- Experience with cybersecurity regulations in a regulated industry (financial services, insurance, or healthcare preferred)
- Strong GRC background with experience maintaining risk registers, policy frameworks, and control libraries
- Proven ability to present cybersecurity risk and incident information to boards of directors, audit committees, and regulators
- Experience managing third-party and vendor cybersecurity risk programs
- Excellent cross-functional leadership skills with a track record of partnering effectively with Legal, Finance, Internal Audit, and Engineering
- Experience in the insurance, Insurtech, or fintech industry
- Familiarity with privacy frameworks and data protection requirements (CCPA/CPRA, state breach notification laws)
- Relevant certifications such as CISSP, CISM, CRISC, or CISA
- Background in security engineering or application security in addition to GRC and security operations
- Experience managing cybersecurity programs across multi-entity corporate structures1
- Healthy Hippos Benefits - Multiple medical plans to choose from and 100% employer covered dental & vision plans for our team members and their families. We also offer a 401(k)-retirement plan, short & long-term disability, employer-paid life insurance, Flexible Spending Accounts (FSA) for health and dependent care, and an Employee Assistance Program (EAP)
- Equity -This position is eligible for equity compensation
- Training and Career Growth - Training and internal career growth opportunities
- Flexible Time Off - You know when and how you should recharge
- Little Hippos Program - We offer 12 weeks of parental leave for primary and secondary caregivers
- Hippo Habitat - Snacks and drinks available and catered lunches for onsite employees
The Morristown, NJ base pay range for this role is $237,500 - $390,000. Exact compensation may vary based on several job-related factors that are unique to each candidate, including but not limited to: skill set, experience, education/training, location, business needs and market demands. Hippo is an equal opportunity employer, and we are committed to building a team culture that celebrates diversity and inclusion. Hippo's applicants are considered solely based on their qualifications, without regard to an applicant's disability or need for accommodation. Any Hippo applicant who requires reasonable accommodations during the application process should contact the Hippo's People Team to make the need for an accommodation known.
Hippo CCPA
Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Chief Information Security Officer (CISO) in Morristown, NJ vacancy
- ...Chief Information Security Officer (CISO) About the Company Technology-driven provider of home insurance Industry Insurance Type Public Company Founded 2015 Employees 501-1000 Categories Insurance Finance About the Role The Company...Suggested
$130k - $150k
...ongoing guidance, coaching, and feedback. Qualifications: ~ Bachelors degree in Engineering, Computer Science, Management Information Systems, Accounting, or a related field. ~ Relevant professional certification (e.g., CISA, CISSP, CISM, CPA, CFE, PMP, CIA)....Suggested$70.6k - $118.3k
...Information Security Operations Engineer Being on medication is tough enough. We want to make getting it the easy part. Getting prescriptions to patients has become increasingly complex. When things get messy along the prescription journey, pharmaceutical manufacturers...SuggestedFlexible hours$310.6k
Atlantic Health is seeking a senior leader to oversee the operational performance of its diagnostic imaging and interventional radiology services. The successful candidate will develop strategic plans, improve service delivery, monitor KPIs, and ensure compliance with regulations...Suggested$350k - $375k
About the role InvestCloud is seeking an experienced Chief Product & Information Security Officer (CPISO) to lead the company's global information security strategy, governance, risk management, and incident response capabilities. Uniquely, this role carries explicit...SuggestedFull timeFlexible hours- A defense contractor is seeking an experienced Air Advisor Instructor to provide instruction on security cooperation concepts and manage course curriculum. Candidates must have a Master's degree and experience in advisory roles, including MSAS Mission Commander or Team...Contract workFor contractors
$153k - $192k
Tevapharm in Parsippany-Troy Hills, NJ is seeking an Associate Director, IT - Patient Services to lead technology solutions supporting Patient Services. This role focuses on enhancing patient engagement, ensuring compliance, and optimizing service delivery across the commercial...$302.01k - $390.83k
...situations. Ability to identify the most important aspects of an issue. Ability to make effective evidence-based decisions even when information is limited, or solutions may produce challenging short-term consequences. Ability to provide overall leadership for one or more...Temporary workFor contractorsLocal areaWorldwide- ...Job Description Atlantic Health is Seeking a Section Chief of Neuroradiology in Summit, New Jersey Atlantic Health, one of... ...comprehensive Total Rewards package that supports the health, financial security, and well-being of all team members. Offerings vary based on...Hourly payFull timeTemporary workPart timeFor contractorsFor subcontractorInternshipRelocationFlexible hours
- ...Networking and Database operations. You will shape the vision and strategy for our foundational tech stack and drive reliability, security, and scalability across the enterprise. You will mentor IT professionals, manage vendor relationships, and control budgets while guiding...
$40 - $45 per hour
...as well as ensuring that you have the financial stability and security to think long term. Underpinning all of this is a clear set of... ...an innovative force, where healthcare meets retail. For more information, visit . Business Structure The Joint Corp is a franchisor of...Hourly payFull timePart timeFlexible hours$85k - $105k
SportsMed Physical Therapy is fortunate to be one of the fastest growing multidisciplinary practices in New Jersey. The services we offer our patients are: Chiropractic, Physical Therapy, Occupational Hand Therapy, & Acupuncture. We treat a diverse variety of patients ...$40 - $45 per hour
The Opportunity Flexible Part Time 20 hours per week or Full Time Mon-Fri 40 hours per week available Part time to Full time 20 to 40 hours per week $40 to $45 per hour plus performance bonuses Paid Holidays & PTO Paid Malpractice Uniform Allowance Responsibilities Consult...Hourly payFull timePart timeFlexible hours- SportsMed Physical Therapy is seeking a Chiropractor in Maplewood, New Jersey. The ideal candidate will provide comprehensive care in a team-oriented, multidisciplinary environment. The position requires a degree from an accredited American Chiropractic Association (ACA...
- The Joint Chiropractic in West Caldwell, NJ, seeks a dedicated Chiropractor to join their team. This role offers flexible scheduling with options for part-time and full-time work. Responsibilities include patient consultations, evaluations, manual adjustments, and maintaining...Full timePart timeFlexible hours
$100k
...looking to grow with a dynamic practice, with our staff having over 20 years of experience successfully running multimillion dollar offices. We need a chiropractor to run, operate, and potentially own a percentage of a state-of-the-art, multi-specialty facility featuring...Full timeWork at officeMonday to Friday- SwiftCruit is seeking a Software Engineering Manager to lead a seasoned team in Florham Park, New Jersey. The role focuses on driving mission impact through innovative software development and leading the software engineering team effectively. The ideal candidate will have...
- Solstice Mobile, Inc. is seeking an IT Director in Morris Plains, NJ, to lead global operations in Cloud, Datacenter, Networking, and Database functions. This hybrid role involves managing technical teams and enhancing infrastructure strategies to align with business objectives...
- ...influence cross-functional partners and explain regulatory requirements in practical business terms. Proficiency with Microsoft Office, Adobe/PDF tools, regulatory databases, and document/eQMS systems. Comfortable supporting audits, inspections, agency questions,...Work at office
- A leading company in regulatory compliance is seeking a Regulatory Compliance Specialist for a fast-paced role in Parsippany, NJ. The position involves supporting compliance processes related to ingredient disclosure and Safety Data Sheets, along with collaboration across...
- ...WERCS portal. Interpret regulations and guidance documents accurately. Assist in tracking, archiving, and retrieving regulatory information for submissions and licensing. Qualifications BA/BS degree in natural or Life Sciences. 1-2 years of experience in Regulatory Affairs...
$187k - $281k
Information Technology & Digital Director - Data, Analytics & AI - Mead Johnson Nutrition City: Parsippany About the role The Head of Data... ...ownership frameworks Ensure compliance with data privacy, security, and regulatory requirements Drive a strong data stewardship...Temporary workLocal areaVisa sponsorship- ...into various other countries/territories. Maintain and protect confidentiality with regards to all aspects of client and company information. Ability to multi‑task, prioritize, and manage time effectively in a teamwork environment. Performs general administrative tasks...
- ...on delivering only the best quality talent, the first time and every time. We provide quality resources in four specialty areas: Information Technology (IT), Clinical Research, Rehabilitation Therapy and Nursing. Job Description Title: Regulatory Associate Duration:6 Months...Work experience placementLocal area
- ...Section Chief, Pediatric Surgery Atlantic Health is seeking a seasoned pediatric surgeon to become Section Chief, Pediatric Surgery... ...Total Rewards package that supports the health, financial security, and well-being of all team members. Offerings vary based on role...Hourly payFull timeTemporary workPart timeFor contractorsFor subcontractorFlexible hours
$60k - $85k
...written communication abilities. ~ Proficiency with Microsoft Office applications. ~ Ability to manage multiple priorities in a... ...origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic...Full timeWork at officeLocal areaRemote work- Atlantic Health in Morristown, NJ, is seeking a Section Chief, Pediatric Surgery to join the team at Goryeb Children’s Hospital. This role involves leading a specialized team in thoracic, oncologic, neonatal, and emergency surgeries. The ideal candidate must be Board Certified...
- In this position, you will underwrite new and renewal business which includes solicitation, selection and pricing of highly complex multi-line risks (workers compensation, commercial auto, general liability). You will actively and creatively pursue new commercial insurance...Local area
- Atlantic Health is Seeking a Section Chief, Pediatric Surgery at Atlantic Health Goryeb Children's Hospital Atlantic Health, one of the largest integrated healthcare systems in New Jersey, is seeking a seasoned pediatric surgeon to become Section Chief, Pediatric Surgery...Hourly payFull timeFor contractorsFor subcontractorShift work
- Section Chief, Pediatric Surgery - Atlantic Health Goryeb Children’s Hospital Morristown, NJ, United States. Job Description Atlantic... ...Total Rewards package that supports the health, financial security, and well-being of all team members. Medical, Dental, Vision,...Full timeTemporary workFor contractorsFor subcontractorFlexible hoursShift workDay shift
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Chief Information Security Officer (CISO). Be the first to apply!
Related searches
- information security lead Morristown, NJ
- remote ciso
- ciso
- information systems security officer
- business information security officer
- business information security officer biso
- chief information security officer
- information security officer
- information systems security officer sso
- chief information security officer ciso

