Chief Information Security Officer

Summary

Join Foodsmart as their Chief Information Security Officer (CISO) and lead the development and execution of their comprehensive security strategy. You will be responsible for safeguarding Foodsmart's assets across various platforms, including gig economy, SaaS, logistics, and health-tech. This role requires a strategic leader with extensive cybersecurity experience in relevant industries and a deep understanding of compliance frameworks like HIPAA, GDPR, and SOC 2. You will build and maintain robust security protocols, manage incident response, and cultivate a security-first culture. The position offers a competitive salary, equity, and benefits, including remote work flexibility and unlimited PTO.

Requirements

• 15+ years of progressive leadership experience in information security, including executive-level roles such as CISO, VP of Security, or similar
• Strong familiarity with compliance frameworks such as HIPAA, GDPR, SOC 2, and NIST, with a proven ability to implement them in regulated industries
• Hands-on knowledge of cutting-edge security technologies, including threat intelligence platforms, endpoint protection, SIEM tools, and secure data pipelines
• Exceptional communication and leadership skills, with experience engaging boards, executive teams, and external partners on security strategies
• Strong experience developing and implementing privacy programs, including policy creation, compliance monitoring, and incident response

Responsibilities

• Lead security strategy: Design and execute an enterprise-wide information security strategy that aligns with Foodsmart’s business goals and evolving threat landscape
• Enhance risk management: Develop robust risk assessment and mitigation frameworks, ensuring proactive identification and management of vulnerabilities
• Strengthen compliance: Oversee compliance initiatives to meet HIPAA, GDPR, SOC 2, and other relevant standards, ensuring regulatory alignment across Foodsmart’s operations
• Secure gig economy and SaaS platforms: Build and maintain advanced security protocols to protect Foodsmart’s gig-economy logistics systems, SaaS platforms, and member data
• Drive innovation: Partner with product and engineering teams to embed security into the design of scalable, tech-driven solutions
• Establish privacy program: Design, implement, and manage a comprehensive privacy program to ensure compliance with regulations and build customer trust
• Secure AI initiative: Partner with product and engineering teams to secure AI/ML development and deployment. Address AI-specific issues and ensure data privacy compliance
• Manage incident response: Lead a proactive and robust incident response program, ensuring resilience and rapid recovery from cybersecurity threats
• Cultivate a security-first culture: Develop and implement ongoing training programs that empower employees to prioritize security best practices in daily operations

Preferred Qualifications

Advanced security certifications such as CISSP, CISM, or CISA and experience working with cloud-based systems like AWS or GCP

Benefits

• Remote-First Company
• Unlimited PTO
• Flexible & remote location
• Healthcare Coverage (Medical, Dental, Vision)
• 401k, bonus, & stock options
• Gym reimbursement