Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
LifeMD

Vice President, Information Security

LifeMD

Vice President of Information Security leading cybersecurity initiatives at LifeMD, a telehealth provider. Focusing on data protection and regulatory compliance in a mission-critical healthcare environment.

Posted 5/8/2026full-timeRemote • California • 🇺🇸 United StatesLeadWebsite

Tech Stack

Tools & technologies
CloudCyber SecuritySDLC

About the role

Key responsibilities & impact
  • Lead all aspects of enterprise information security, including threat detection, incident response, vulnerability management, and continuous monitoring.
  • Establish and mature a comprehensive Governance, Risk, and Compliance (GRC) framework aligned to healthcare industry standards (e.g., NIST, HITRUST, ISO 27001).
  • Continuously assess enterprise risk posture, prioritizing cybersecurity risks in alignment with clinical, operational, and financial risk frameworks.
  • Design and implement strategies to protect sensitive patient data, including Protected Health Information (PHI), Personally Identifiable Information (PII), and clinical data.
  • Ensure compliance with healthcare data security and privacy regulations, including HIPAA and HITECH, as well as state-specific privacy laws.
  • Oversee data governance, encryption, identity management, and secure data exchange across clinical systems (EHR/EMR), patient platforms, and third-party partners.
  • Own and manage IT risk, compliance, and IT General Controls (ITGC) programs in support of SOX and healthcare regulatory requirements.
  • Partner with internal audit, compliance, legal, and finance teams to ensure audit readiness and timely remediation of control deficiencies.
  • Maintain compliance with standards such as HIPAA, HITRUST, SOC 2, PCI-DSS (as applicable), and other healthcare-specific regulatory frameworks.
  • Lead security architecture across enterprise infrastructure, including cloud, hybrid, and on-premise environments supporting clinical and digital health platforms.
  • Drive secure cloud transformation initiatives, ensuring appropriate controls across IaaS, PaaS, and SaaS environments.
  • Partner with engineering, IT, and DevOps teams to implement DevSecOps practices and secure software development lifecycle (SDLC).
  • Lead enterprise incident response strategy, including preparedness, detection, containment, and recovery from cyber incidents.
  • Build, lead, and scale a high-performing information security organization, including security operations, risk, IT compliance functions.
  • Serve as a key advisor to executive leadership, the Board, and Audit/Compliance Committees on cybersecurity risk and strategy.
  • Drive enterprise-wide security awareness and training programs to foster a culture of security and compliance.

Requirements

What you’ll need
  • 12+ years of progressive leadership in information security, cybersecurity, and risk management, preferably within healthcare, life sciences, or other highly regulated industries.
  • Experience operating in a publicly traded or highly regulated environment with strong governance and compliance requirements.
  • Proven track record of leading enterprise security programs in complex environments involving clinical systems, digital platforms, and sensitive patient data.
  • Deep knowledge of healthcare regulatory frameworks, including HIPAA, HITECH, HITRUST, and experience managing PHI/PII at scale.
  • Strong understanding of ITGC, SOX compliance, and audit processes.
  • Experience securing healthcare technologies, including EHR/EMR systems, patient engagement platforms, telehealth systems, and medical device integrations.
  • Hands-on leadership in cloud security, infrastructure modernization, and enterprise security architecture.
  • Expertise in identity and access management (IAM), zero trust frameworks, and modern security operations.
  • Experience implementing and managing GRC platforms and frameworks such as NIST, ISO 27001, and HITRUST.
  • Demonstrated success in incident response, cyber resilience, and enterprise risk mitigation.
  • Strong executive presence with experience engaging Boards and Audit/Compliance Committees.
  • Proven ability to lead cross-functional initiatives across technology, clinical, legal, and operational teams.
  • Ability to operate effectively in a fast-paced, high-stakes healthcare environment where security and patient safety are paramount.
  • Bachelor’s or Master’s degree in Computer Science, Information Security, or related field.
  • Relevant certifications such as CISSP, CISM, CISA, CRISC, or HCISPP preferred.

Benefits

Comp & perks
  • Health Care Plan (Medical, Dental & Vision)
  • Retirement Plan (Roth 401k)
  • Life Insurance (Basic, Voluntary & AD&D)
  • Unlimited PTO Policy
  • Paid Holidays
  • Short Term & Long Term Disability
  • Training & Development

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
information securitycybersecurityrisk managementincident responsevulnerability managementcloud securityidentity and access managementDevSecOpsdata governanceencryption
Soft Skills
leadershipcommunicationstrategic planningcollaborationexecutive presencecross-functional leadershipsecurity awareness trainingaudit readinessproblem-solvingadaptability
Certifications
CISSPCISMCISACRISCHCISPP