×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant IT Project Manager

Chief Information Security Officer

Job in Phoenix, Maricopa County, Arizona, 85003, USA
Listing for: Healthcare Outcomes Performance Co. (HOPCo)
Full Time position
Listed on 2026-06-03
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, IT Project Manager
Salary/Wage Range or Industry Benchmark: 150000 - 200000 USD Yearly USD 150000.00 200000.00 YEAR
Job Description & How to Apply Below

Overview

General Statement of Duties: The Chief Information Security Officer (CISO) is the executive leader responsible for all cybersecurity and data protection needs across HOPCo. This leader is tasked with proactively ensuring all systems, networks, methods of storing and moving data, are secured in a manner that is robust and protects member personal health information and all other sensitive or business confidential information and assets.

The CISO will protect HOPCo from “bad actors” seeking to undermine the HOPCo business or access protected data. This leader will stay aware of all new threats, to proactively monitor, detect, and mitigate.

This leader will work with HOPCo Compliance to ensure all HOPCo employees understand the role they play in protecting HOPCo assets and data. The CISO is responsible for all security standards, policies, and enforcement across HOPCo. This includes accountability for the security standards enforced with all third parties upon which HOPCo depends. This also includes the security profiles for all clinical sites owned or managed by HOPCo.

This leader plays a critical role in making certain HOPCo is prepared to continue to function in the event of a ransomware attack or natural disaster. The CISO is also tasked with gaining and maintaining HiTrust certification for HOPCo and ensuring ongoing compliance with regulatory requirements like HIPAA and GDPR.

Essential Functions
  • Develop and execute on a plan to gain and maintain HiTrust certification
  • Own ongoing compliance with data protection regulations like HIPAA and GDPR
  • Stay aware and current on all government policies related to data protection
  • Stay aware of the developing cybersecurity threat landscape using regular NIST alerts (or equivalent) and filter noise from actual threats to the HOPCo ecosystem
  • Monitor the HOPCo systems for suspicious activity
  • Establish cybersecurity policies and protocols
  • Establish data privacy policies and protocols
  • Partner with Compliance to maintain and deliver regular cybersecurity and data privacy training to all employees
  • Enforce HOPCo cybersecurity and data privacy policies with all third parties
  • Initiate and sponsor regular cybersecurity audits, including penetration tests, to identify vulnerabilities
  • Assess all audit findings, establishing a prioritized path to mitigation
  • Report the state of cybersecurity threats and readiness to the CTO, CEO, and board on a regular basis
  • Establish dashboards and metrics to monitor current state and improvement over time
  • Select and implement appropriate monitoring tools
  • Develop an annual budget and business case tied to security investment needs
  • Establish a plan to protect HOPCo against ransomware attacks and to ensure the business can continue uninterrupted in the event of an attack
  • Work with other IT and business leaders to establish a robust Disaster Recovery Business Continuity Plan
  • Manage prioritization and execution priority on all cybersecurity and data privacy work
  • Manage MSSP vendors, including the selection and financial arrangement of using vendors
  • Work with the CTO to manage the security-related budget
  • Hire, manage, and coach security team members
  • Manage security assessments of HOPCo for customers and potential customer audits
  • Ensure HOPCo Access Management processes and policies are robust and followed
Education
  • Bachelor’s Degree required (Computer Science preferred); CISSP or equivalent security professional certification.
Experience
  • 10+ years in various roles leading IT cybersecurity and data privacy teams and processes within healthcare
  • Exceptional written and verbal communication skills. Ability to communicate complex technical topics effectively to executive audiences.
  • Experience with in a HiTrust certified organization and involvement in ongoing adherence
  • Experience implementing security programs within complex environments
  • Experience directly managing third parties to implement security tools and protocols
  • Demonstrated experience as successful influential leader across matrixed teams
  • Experience leading, hiring and coaching a team that includes internal and external team members
Requirements
  • None
Knowledge
  • Expert knowledge and insight into threat vectors,…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search