FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.
Information Security Officer
HITRUSTInformation Security Officer overseeing information security program and implementing Zero Trust principles at HITRUST. Collaborating with Engineering and business stakeholders to manage security risks and controls.
Tech Stack
Tools & technologiesCloudCyber Security
About the role
Key responsibilities & impact- Own and lead the enterprise information security program, including strategy, policies, standards, and operating procedures
- Define and operationalize Zero Trust security principles, including identity-centric access controls, least privilege, continuous verification, and explicit trust boundaries
- Align security strategy with business objectives, risk tolerance, and HITRUST assurance requirements
- Translate technical risks into clear business impact for executive leadership
- Monitor emerging cyber threats, cloud security risks, and regulatory changes, implementing proactive mitigations
- Oversee security controls across cloud infrastructure, SaaS platforms, applications, and data environments
- Ensure secure design and operation of identity, access management, logging, monitoring, and encryption services
- Partner with Engineering to embed security into cloud architectures and software development lifecycles (secure-by-design)
- Oversee vulnerability management, security testing, and validation across infrastructure and applications
- Oversee security operations, including threat detection, security analytics, and continuous monitoring capabilities
- Lead incident response for security events, ensuring timely containment, eradication, and recovery
- Conduct post-incident root cause analysis and executive-level reporting
- Establish and maintain disaster recovery and business continuity procedures aligned to cloud-first architectures
- Conduct breach simulations, incident response exercises, and disaster recovery testing
- Manage and continuously enhance a compliance-driven policy and control framework
- Lead or support security assurance activities, including HITRUST CSF, SOC, ISO, HIPAA, and customer-driven assessments
- Support completion of customer security questionnaires and due diligence requests
- Ensure security requirements are integrated into projects and initiatives, and that security milestones are met
- Champion organization-wide security awareness and training initiatives
Requirements
What you’ll need- Minimum of six (6) years of experience in information technology or information security
- Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related discipline
- CISSP certification required; additional certifications (e.g., CEH, CCSP, CISM) are a plus
- Experience with forensic investigation and incident response
- Demonstrated experience leading or participating in security control assessments (e.g., HITRUST CSF, SOC, ISO, HIPAA)
- Strong understanding of cloud security models, identity-centric security, and Zero Trust concepts
- Experience with infrastructure and application security testing
- Strong analytical and organizational skills with the ability to manage multiple initiatives in a dynamic environment
- Excellent verbal, written, and interpersonal communication skills, including the ability to communicate security risk effectively to executives, engineering teams, and business stakeholders.
Benefits
Comp & perks- Health insurance
- 401(k) plan
- Paid time off
- Flexible work arrangements
- Professional development opportunities
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Zero Trust security principlesidentity-centric access controlsvulnerability managementsecurity testingincident responsedisaster recoverycloud securityinfrastructure securityapplication securitysecurity analytics
Soft Skills
analytical skillsorganizational skillscommunication skillsleadershipcollaborationrisk managementproblem-solvingexecutive reportingtraining and awarenessdynamic initiative management
Certifications
CISSPCEHCCSPCISM