Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Chief Information Security Officer (CISO)

$237.5k - $390k

Hippo Insurance

Title: Chief Information Security Officer (CISO)

Location: Austin, TX / Morristown, NJ (hybrid)

Reports To: Chief Technology Officer

About Hippo:

Hippo was built on a promise: make homeownership effortless. Nearly a decade later, that mission still drives us. We use technology and data to help our customers stay ahead of problems and protect what matters most.


Today, that same tech-native approach powers our work beyond homeowners. Hippo operates as a diversified carrier platform, partnering with MGAs to deliver tailored program solutions that help them grow and deliver better customer experiences. Behind that work is a team that values ownership, curiosity, collaboration, and continuous improvement.


If you're energized by building what's next, we'd love to meet you.


About the Role:


Hippo is hiring a Chief Information Security Officer to lead cybersecurity strategy, security operations, and governance, risk, and compliance across the enterprise. You will be responsible for protecting Hippo's systems, data, and customers against an evolving threat landscape while ensuring the company meets its regulatory and compliance obligations as a publicly traded, multi-state insurance carrier.


This role owns Hippo's SOC 2 program, leads security operations, and drives compliance with applicable state and federal cybersecurity regulations. You will also own identity governance, privacy and data protection strategy, and third-party risk management. This is a high-visibility leadership role that requires equal fluency in security engineering, regulatory compliance, and executive communication.


About You:


You are a seasoned cybersecurity leader who has built and run security programs at a publicly traded, regulated company. You have navigated regulatory examinations and SOX audit cycles, and you can move seamlessly between a technical incident response scenario and a board presentation. You think in terms of risk, you quantify what you can, and you communicate what you can't with intellectual honesty.


You bring a builder's mindset to security. You understand that a great security program enables the business rather than slowing it down, and you know how to embed security into engineering culture without creating friction. Whether your background is in Insurtech, fintech, healthcare, or another heavily regulated sector, you understand multi-regulator environments and lead with clarity and high standards.


What You'll Do:

  • Further develop and execute Hippo's enterprise cybersecurity strategy, aligned with business risk appetite and regulatory requirements
  • Build and lead the security operations function, including threat detection, incident response, vulnerability management, and threat intelligence
  • Own Hippo's SOC 2 program end-to-end, including control design, evidence collection, readiness assessments, and auditor engagement
  • Lead the governance, risk, and compliance function, maintaining the cybersecurity risk register, policy framework, standards, and control library
  • Drive compliance with applicable state and federal cybersecurity and insurance regulations
  • Support SEC cybersecurity disclosure obligations in coordination with Legal and Finance
  • Lead identity governance, including access certification, privileged access management policy, and separation of duties enforcement
  • Own privacy and data protection compliance strategy, partnering with Legal on data handling, breach notification, and policyholder data protection
  • Manage the third-party and vendor cybersecurity risk management program
  • Report to the Board of Directors and Audit and Risk Committee on cybersecurity posture, risk trends, and incident activity
  • Provide second-line oversight and security control design input to the SOX ITGC program
  • Build and lead the security engineering function, owning secure design standards and threat modeling practices that ensure security is embedded from architecture through to deployment
  • Build, mentor, and develop the cybersecurity team and drive a culture of security awareness across the organization
  • Lead cybersecurity budgeting, roadmap planning, and technology rationalization
  • Own disaster recovery and business continuity planning across the enterprise, working closely with the CIO and CTO to drive regular testing, validate recovery capabilities, and ensure organizational resilience is aligned to business and cybersecurity risk
  • Own the enterprise Incident Response Plan, lead the Security Incident Response Team (SIRT) across the full incident lifecycle from detection and containment through recovery and post-incident review, define severity classifications and escalation paths, and ensure cross-functional stakeholders (Legal, Compliance, IT, and executive leadership) are engaged appropriately during active incidents
  • Drive a continuous improvement program with outcomes tracked to remediation and reported to the Audit and Risk Committee
  • Lead the enterprise response to supply chain vulnerabilities across open-source dependencies and third-party service providers, owning risk assessment, mitigation, and remediation
Must Haves:
  • 10+ years of progressive experience in cybersecurity or information security, with at least 5 years in a senior security leadership role (CISO, VP of Security, or Head of Information Security)
  • Experience at a regulated, publicly traded company, including direct involvement in SOX audit cycles
  • Track record of building and managing security operations capabilities
  • End-to-end ownership of a SOC 2 program, including control design, audit preparation, and remediation
  • Experience with cybersecurity regulations in a regulated industry (financial services, insurance, or healthcare preferred)
  • Strong GRC background with experience maintaining risk registers, policy frameworks, and control libraries
  • Proven ability to present cybersecurity risk and incident information to boards of directors, audit committees, and regulators
  • Experience managing third-party and vendor cybersecurity risk programs
  • Excellent cross-functional leadership skills with a track record of partnering effectively with Legal, Finance, Internal Audit, and Engineering
Nice to Have:
  • Experience in the insurance, Insurtech, or fintech industry
  • Familiarity with privacy frameworks and data protection requirements (CCPA/CPRA, state breach notification laws)
  • Relevant certifications such as CISSP, CISM, CRISC, or CISA
  • Background in security engineering or application security in addition to GRC and security operations
  • Experience managing cybersecurity programs across multi-entity corporate structures1
Benefits and Perks:

Hippo treats its team members with the same level of dedication and care as we do our customers, which is why we're fortunate to provide all of our Hippos with:
  • Healthy Hippos Benefits - Multiple medical plans to choose from and 100% employer covered dental & vision plans for our team members and their families. We also offer a 401(k)-retirement plan, short & long-term disability, employer-paid life insurance, Flexible Spending Accounts (FSA) for health and dependent care, and an Employee Assistance Program (EAP)
  • Equity -This position is eligible for equity compensation
  • Training and Career Growth - Training and internal career growth opportunities
  • Flexible Time Off - You know when and how you should recharge
  • Little Hippos Program - We offer 12 weeks of parental leave for primary and secondary caregivers
  • Hippo Habitat - Snacks and drinks available and catered lunches for onsite employees

The Morristown, NJ base pay range for this role is $237,500 - $390,000. Exact compensation may vary based on several job-related factors that are unique to each candidate, including but not limited to: skill set, experience, education/training, location, business needs and market demands.

Hippo is an equal opportunity employer, and we are committed to building a team culture that celebrates diversity and inclusion. Hippo's applicants are considered solely based on their qualifications, without regard to an applicant's disability or need for accommodation. Any Hippo applicant who requires reasonable accommodations during the application process should contact the Hippo's People Team to make the need for an accommodation known.


Hippo CCPA
Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Chief Information Security Officer (CISO) in Morristown, NJ vacancy
  •  ...Chief Information Security Officer (CISO) About the Company Technology-driven provider of home insurance Industry Insurance Type Public Company Founded 2015 Employees 501-1000 Categories Insurance Finance About the Role The Company... 
    Suggested

    Confidential

    Morristown, NJ
    3 days ago
  • $130k - $150k

     ...ongoing guidance, coaching, and feedback. Qualifications: ~ Bachelors degree in Engineering, Computer Science, Management Information Systems, Accounting, or a related field. ~ Relevant professional certification (e.g., CISA, CISSP, CISM, CPA, CFE, PMP, CIA).... 
    Suggested

    Hire Point Recruiting

    Madison, NJ
    1 day ago
  • $70.6k - $118.3k

     ...Information Security Operations Engineer Being on medication is tough enough. We want to make getting it the easy part. Getting prescriptions to patients has become increasingly complex. When things get messy along the prescription journey, pharmaceutical manufacturers... 
    Suggested
    Flexible hours

    ConnectiveRx

    Whippany, NJ
    3 days ago
  • $310.6k

    Atlantic Health is seeking a senior leader to oversee the operational performance of its diagnostic imaging and interventional radiology services. The successful candidate will develop strategic plans, improve service delivery, monitor KPIs, and ensure compliance with regulations...
    Suggested

    Atlantic Health

    Convent Station, NJ
    4 days ago
  • $350k - $375k

    About the role InvestCloud is seeking an experienced Chief Product & Information Security Officer (CPISO) to lead the company's global information security strategy, governance, risk management, and incident response capabilities. Uniquely, this role carries explicit... 
    Suggested
    Full time
    Flexible hours

    InvestCloud, Inc.

    Warren, NJ
    2 days ago
  • A defense contractor is seeking an experienced Air Advisor Instructor to provide instruction on security cooperation concepts and manage course curriculum. Candidates must have a Master's degree and experience in advisory roles, including MSAS Mission Commander or Team... 
    Contract work
    For contractors

    EEC Solutions

    Whippany, NJ
    3 days ago
  • $153k - $192k

    Tevapharm in Parsippany-Troy Hills, NJ is seeking an Associate Director, IT - Patient Services to lead technology solutions supporting Patient Services. This role focuses on enhancing patient engagement, ensuring compliance, and optimizing service delivery across the commercial...

    Tevapharm

    Parsippany, NJ
    3 days ago
  • $302.01k - $390.83k

     ...situations. Ability to identify the most important aspects of an issue. Ability to make effective evidence-based decisions even when information is limited, or solutions may produce challenging short-term consequences. Ability to provide overall leadership for one or more... 
    Temporary work
    For contractors
    Local area
    Worldwide

    Gilead Sciences

    Parsippany, NJ
    4 days ago
  •  ...Job Description Atlantic Health is Seeking a Section Chief of Neuroradiology in Summit, New Jersey Atlantic Health, one of...  ...comprehensive Total Rewards package that supports the health, financial security, and well-being of all team members. Offerings vary based on... 
    Hourly pay
    Full time
    Temporary work
    Part time
    For contractors
    For subcontractor
    Internship
    Relocation
    Flexible hours

    Atlantic Health System

    Morristown, NJ
    20 hours ago
  •  ...Networking and Database operations. You will shape the vision and strategy for our foundational tech stack and drive reliability, security, and scalability across the enterprise. You will mentor IT professionals, manage vendor relationships, and control budgets while guiding... 

    Jobtailor

    Morris Plains, NJ
    1 day ago
  • $40 - $45 per hour

     ...as well as ensuring that you have the financial stability and security to think long term. Underpinning all of this is a clear set of...  ...an innovative force, where healthcare meets retail. For more information, visit . Business Structure The Joint Corp is a franchisor of... 
    Hourly pay
    Full time
    Part time
    Flexible hours

    The Joint Chiropractic

    West Caldwell, NJ
    3 days ago
  • $85k - $105k

    SportsMed Physical Therapy is fortunate to be one of the fastest growing multidisciplinary practices in New Jersey. The services we offer our patients are: Chiropractic, Physical Therapy, Occupational Hand Therapy, & Acupuncture. We treat a diverse variety of patients ...

    SportsMed Physical Therapy

    Maplewood, NJ
    4 days ago
  • $40 - $45 per hour

    The Opportunity Flexible Part Time 20 hours per week or Full Time Mon-Fri 40 hours per week available Part time to Full time 20 to 40 hours per week $40 to $45 per hour plus performance bonuses Paid Holidays & PTO Paid Malpractice Uniform Allowance Responsibilities Consult...
    Hourly pay
    Full time
    Part time
    Flexible hours

    Stryker

    West Caldwell, NJ
    20 hours ago
  • SportsMed Physical Therapy is seeking a Chiropractor in Maplewood, New Jersey. The ideal candidate will provide comprehensive care in a team-oriented, multidisciplinary environment. The position requires a degree from an accredited American Chiropractic Association (ACA...

    SportsMed Physical Therapy

    Maplewood, NJ
    4 days ago
  • The Joint Chiropractic in West Caldwell, NJ, seeks a dedicated Chiropractor to join their team. This role offers flexible scheduling with options for part-time and full-time work. Responsibilities include patient consultations, evaluations, manual adjustments, and maintaining...
    Full time
    Part time
    Flexible hours

    The Joint Chiropractic

    West Caldwell, NJ
    3 days ago
  • $100k

     ...looking to grow with a dynamic practice, with our staff having over 20 years of experience successfully running multimillion dollar offices. We need a chiropractor to run, operate, and potentially own a percentage of a state-of-the-art, multi-specialty facility featuring... 
    Full time
    Work at office
    Monday to Friday

    National Coalition of Healthcare Recruiters

    Millburn, NJ
    20 hours ago
  • SwiftCruit is seeking a Software Engineering Manager to lead a seasoned team in Florham Park, New Jersey. The role focuses on driving mission impact through innovative software development and leading the software engineering team effectively. The ideal candidate will have...

    SwiftCruit

    Florham Park, NJ
    3 days ago
  • Solstice Mobile, Inc. is seeking an IT Director in Morris Plains, NJ, to lead global operations in Cloud, Datacenter, Networking, and Database functions. This hybrid role involves managing technical teams and enhancing infrastructure strategies to align with business objectives...

    Solstice Mobile, Inc.

    Morris Plains, NJ
    1 day ago
  •  ...influence cross-functional partners and explain regulatory requirements in practical business terms. Proficiency with Microsoft Office, Adobe/PDF tools, regulatory databases, and document/eQMS systems. Comfortable supporting audits, inspections, agency questions,... 
    Work at office

    ElectroCore

    Florham Park, NJ
    20 hours ago
  • A leading company in regulatory compliance is seeking a Regulatory Compliance Specialist for a fast-paced role in Parsippany, NJ. The position involves supporting compliance processes related to ingredient disclosure and Safety Data Sheets, along with collaboration across...

    Integrated Resources

    Parsippany, NJ
    4 days ago
  •  ...WERCS portal. Interpret regulations and guidance documents accurately. Assist in tracking, archiving, and retrieving regulatory information for submissions and licensing. Qualifications BA/BS degree in natural or Life Sciences. 1-2 years of experience in Regulatory Affairs... 

    Integrated Resources

    Parsippany, NJ
    3 days ago
  • $187k - $281k

    Information Technology & Digital Director - Data, Analytics & AI - Mead Johnson Nutrition City: Parsippany About the role The Head of Data...  ...ownership frameworks Ensure compliance with data privacy, security, and regulatory requirements Drive a strong data stewardship... 
    Temporary work
    Local area
    Visa sponsorship

    Reckitt Benckiser LLC

    Parsippany, NJ
    3 days ago
  •  ...into various other countries/territories. Maintain and protect confidentiality with regards to all aspects of client and company information. Ability to multi‑task, prioritize, and manage time effectively in a teamwork environment. Performs general administrative tasks... 

    DOWC

    Parsippany, NJ
    1 day ago
  •  ...on delivering only the best quality talent, the first time and every time. We provide quality resources in four specialty areas: Information Technology (IT), Clinical Research, Rehabilitation Therapy and Nursing. Job Description Title: Regulatory Associate Duration:6 Months... 
    Work experience placement
    Local area

    Integrated Resources

    Parsippany, NJ
    3 days ago
  •  ...Section Chief, Pediatric Surgery Atlantic Health is seeking a seasoned pediatric surgeon to become Section Chief, Pediatric Surgery...  ...Total Rewards package that supports the health, financial security, and well-being of all team members. Offerings vary based on role... 
    Hourly pay
    Full time
    Temporary work
    Part time
    For contractors
    For subcontractor
    Flexible hours

    Atlantic Health System

    Morristown, NJ
    5 days ago
  • $60k - $85k

     ...written communication abilities. ~ Proficiency with Microsoft Office applications. ~ Ability to manage multiple priorities in a...  ...origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic... 
    Full time
    Work at office
    Local area
    Remote work

    System One

    Parsippany, NJ
    2 days ago
  • Atlantic Health in Morristown, NJ, is seeking a Section Chief, Pediatric Surgery to join the team at Goryeb Children’s Hospital. This role involves leading a specialized team in thoracic, oncologic, neonatal, and emergency surgeries. The ideal candidate must be Board Certified... 

    Atlantic Health

    Convent Station, NJ
    4 days ago
  • In this position, you will underwrite new and renewal business which includes solicitation, selection and pricing of highly complex multi-line risks (workers compensation, commercial auto, general liability). You will actively and creatively pursue new commercial insurance...
    Local area

    PMA Companies

    Parsippany, NJ
    3 days ago
  • Atlantic Health is Seeking a Section Chief, Pediatric Surgery at Atlantic Health Goryeb Children's Hospital Atlantic Health, one of the largest integrated healthcare systems in New Jersey, is seeking a seasoned pediatric surgeon to become Section Chief, Pediatric Surgery... 
    Hourly pay
    Full time
    For contractors
    For subcontractor
    Shift work

    Nahse

    Convent Station, NJ
    4 days ago
  • Section Chief, Pediatric Surgery - Atlantic Health Goryeb Children’s Hospital Morristown, NJ, United States. Job Description Atlantic...  ...Total Rewards package that supports the health, financial security, and well-being of all team members. Medical, Dental, Vision,... 
    Full time
    Temporary work
    For contractors
    For subcontractor
    Flexible hours
    Shift work
    Day shift

    Atlantic Health

    Convent Station, NJ
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Chief Information Security Officer (CISO). Be the first to apply!