Director of Information Security (Healthcare SaaS)

TL;DR

Director of Information Security (Healthcare SaaS): Owning, scaling, and continuously maturing enterprise information security program for a cloud-based benefits administration platform with an accent on protecting sensitive healthcare data, ensuring regulatory compliance, and enabling secure growth. Focus on strategic leadership in security operations, incident management, cloud architecture security, and third-party risk management.

Location: Remote, United States. Standard working hours 8am-5pm Central Time.

Salary: $180,000–$210,000

Company

hirify.global is a leading benefits administration company providing cloud-based technology and services to simplify employee benefits management for thousands of companies nationwide.

What you will do

• Own and evolve the enterprise information security program, including strategy, governance, policies, and multi-year roadmaps.
• Lead protection of PII and PHI, compliance with HIPAA/HITECH, HITRUST, SOC 2, and customer due diligence.
• Provide oversight for security operations, threat detection, vulnerability management, IAM, and incident response.
• Embed security into AWS/Azure cloud environments, SDLC, CI/CD pipelines, and platform architecture.
• Manage vendor relationships, MSSPs, third-party risks, RFPs, and contracts.
• Build and lead the security team, foster security culture, and deliver executive reporting on KPIs and risks.

Requirements

• 10+ years of progressive information security experience, including 5+ years in senior leadership roles.
• Experience owning and scaling security programs in SaaS, benefits administration, HR tech, or healthcare-adjacent environments.
• Deep knowledge of HIPAA/HITECH, HITRUST CSF, SOC 2, NIST CSF/ISO 27001, and cloud security (AWS/Azure).
• Proven leadership in security incidents, MSSP management, and stakeholder communication.
• Bachelor’s degree in Information Security, Computer Science, or related field (or equivalent experience).

Nice to have

• CISSP, CISM, CISA or similar certifications.
• Experience with large healthcare customers or GDPR/CCPA.
• Scaling security in high-growth SaaS organizations.

Culture & Benefits

• Remote first, office friendly environment with no commute required.
• Comprehensive health, dental, vision benefits and retirement savings plans.
• Competitive compensation with performance incentives and professional development opportunities.
• Supportive culture emphasizing collaboration, accountability, excellence, and employee wellbeing initiatives.
• Flexible, creative environment recognized as one of Chicago’s Best and Brightest Companies to Work For.