Define and evolve a multi-year enterprise security roadmap aligned to business objectives and risk appetite across all business units.
Lead the unification of security programs, toolsets, and policies inherited from Transact and CBORD into a single enterprise-class operation.
Own and maintain compliance programs including SOC 2, PCI DSS, HITRUST, TX-RAMP, GovRAMP, FERPA, and HIPAA, securing SaaS platforms and cloud environments.
Own and operate the end-to-end enterprise cybersecurity program, including strategy, architecture, operations, governance, and compliance.
Establish a multi-year security roadmap aligned with business priorities, technology evolution, and regulatory requirements.
Define and execute a strategy for AI-assisted cybersecurity operations, leveraging machine learning, automation, and advanced analytics to enhance detection and response capabilities.
Natera is a global leader in cell-free DNA (cfDNA) testing, dedicated to oncology, women’s health, and organ health. They aim to make personalized genetic testing and diagnostics part of the standard of care. Their team consists of highly dedicated statisticians, geneticists, doctors, laboratory scientists, business professionals, software engineers and many other professionals from world-class institutions, who care deeply for their work and each other.
Serve as the outsourced CISO for 8–12 clients, providing executive-level security leadership on a fractional basis
Conduct security risk assessments, gap analyses, and penetration testing oversight for prospective and current clients
Develop and maintain security programs, policies, and incident response plans tailored to each client's risk profile and regulatory environment
Reputation Management Consultants (RMC) is an affiliated organization with a premier advisory firm specializing in reputation management and strategic consulting for mid-market companies and high-profile clients. They are launching a dedicated cybersecurity division to address a critical truth our clients face every day: a data breach is a reputation event; and are building an AI-powered cybersecurity practice from the ground up.
Support the execution and continuous improvement of Qohash’s security program.
Support risk assessments, track identified risks, and help coordinate remediation efforts.
Maintain security policies, standards, awareness materials, and support internal security training initiatives.
Qohash is building a foundational pillar of Canada’s digital sovereignty, believing security must scale differently. They look for bold, mission-driven individuals with technical depth and strategic clarity who collaborate across disciplines to protect sensitive data.
Lead end-to-end PCI DSS compliance, including CDE scoping and reduction, control implementation/validation, and audit management.
Lead and support SOC 2 Type II attestation initiatives, including TSC mapping, evidence collection, control testing, and remediation tracking
Own the Third-Party Risk Management (TPRM) program, including vendor tiering, risk assessments, and security reviews
HighLevel is an AI-powered business operating system that gives agencies, entrepreneurs and SMBs the infrastructure to build, automate and scale. With over 2,000 team members across 10+ countries, HighLevel operates as a global, remote-first organization built for speed and ownership.
Monitor, assess, and maintain security controls within cloud environments.
Manage the overall Security Awareness program for Cority.
Provide Security Incident Response support and participate in the development of business cases and presentations on cloud security technologies.
Cority helps customers see and prevent risks across their operations in real time. They are recognized by top analysts and trusted by more than 1,500 of the most complex organizations worldwide.
Integrate security across the entire product lifecycle.
Build a platform security mindset, ensuring cloud-native architecture, app-first thinking and AI initiatives are secure by design.
Ensure regulatory and compliance requirements are met through scalable, well-designed security capabilities.
Redcare Pharmacy is Europe’s No.1 e-pharmacy, powered by passionate teams and cutting-edge innovation. They strive to create a healthy collaborative work environment where every employee feels valued and inspired to contribute to their vision “Until every human has their health”.
Lead the ongoing maintenance and operation of secure cloud infrastructures, focusing on AWS and cloud-native technologies.
Secure applications built for cloud environments by automating security assessments, monitoring runtime environments, and integrating security practices into the development lifecycle.
Implement robust security controls for cloud workloads and data, including containers, virtual machines, and serverless architectures.
Ro is a direct-to-patient healthcare company with a mission of helping patients achieve their health goals by delivering the easiest, most effective care possible. Ro is the only company to offer nationwide telehealth, labs, and pharmacy services and is recognized as a top workplace, earning more than 20 honors since 2021.
Develop, maintain, and continuously improve GRC policies, standards, procedures, and control frameworks.
Lead and support SOC 2 Type II, ISO 27001, PCI DSS and other compliance initiatives, including evidence collection, control validation, and remediation tracking.
Partner with Security and Platform teams to ensure controls are technically implemented, not just documented.
HighLevel is an AI powered, all-in-one white-label sales & marketing platform that empowers agencies, entrepreneurs, and businesses to elevate their digital presence and drive growth. With over 1,500 team members across 15+ countries, we operate in a global, remote-first environment.
Drive the implementation and continuous improvement of the ISO 27001 Information Security Management System.
Support SOC 2 Type II compliance efforts, including control implementation and evidence collection.
Own and evolve the company-wide risk management program, including risk register and scoring methodology.
Insider One provides a platform that brings marketing and customer engagement teams everything they need in one place. They are powered by 1,500+ team members representing 50+ nationalities across 30+ offices and are trusted by 2000+ customers.
Apply compliance frameworks to assess, design, and implement security controls.
Conduct compliance gap assessments and develop remediation plans.
Create and maintain key documentation tailored to client needs.
AHEAD builds platforms for digital business by weaving together advances in cloud infrastructure, automation and analytics, and software delivery. They prioritize creating a culture of belonging where all perspectives and voices are represented, valued, respected, and heard.
Helping define the security operations roadmap by designing and implementing long term strategies
Improve and maintain processes, tooling, documentation and training to mature and enhance cybersecurity incident response
Design, implement and maintain security events monitoring systems
Docplanner empowers patients by giving them access to leave and read reviews about their visit and also provides doctors with the technology to manage bookings easily and save time. They are leaders in 13 countries with over 2,500 employees globally, maintaining a startup-mindset.
Design and maintain secure architectures across AWS, Azure, and GCP environments.
Collaborate with DevOps and Engineering to integrate security into CI/CD pipelines.
Monitor alerts, investigate incidents, and coordinate responses with the SOC.
Reveleer provides a cloud-based healthcare SaaS platform. They are an equal opportunity employer that values diversity and does not discriminate based on race, religion, or other protected characteristics.
Design, deploy, and manage security solutions within Cloud environments( Azure experience preferred).
Assist other security engineering and consulting needs as they arise.
Implement cloud security controls and monitor compliance frameworks (Azure Security Center, Azure Policy, etc.).
UChicago Medicine is a world-class academic healthcare system. We provide superior healthcare with compassion, always mindful that each patient is a person, an individual.
Own end-to-end compliance strategy and operations.
Conduct risk assessments and identify compliance risks.
Build compliance programs from ground up and coordinate compliance audits.
Sprinto is an AI-native GRC platform that helps organizations manage risks, audits, vendor oversight, and continuous monitoring from a single connected platform. With a team of 350+ employees serving 3,000+ customers across 75+ countries, Sprinto combines scale with expertise to deliver trust and compliance.
Serves as the premier cybersecurity authority within the TALON program.
Provides strategic advisory services to TSA’s IT leadership on cybersecurity risk management, security architecture, and compliance program maturity.
Serves as the senior cybersecurity advisor, providing real-time technical guidance to TSA stakeholders and the O&M contractor in support of rapid issue resolution.
DMI is a leading provider of digital services and technology solutions, headquartered in Tysons Corner, VA. They focus on end-to-end managed IT services, including managed mobility, cloud, cybersecurity, network operations, and application development, supporting public sector agencies and commercial enterprises around the globe.
Oversee the internal cybersecurity program, road map, and strategy.
Partner with Product, Engineering, Legal, and Compliance leadership to determine risks and deploy risk management processes.
Serve as Waymark’s HIPAA Security Officer, ensuring compliance with the HIPAA Security Rule.
Waymark is a mission-driven team transforming care for people with Medicaid benefits. They partner with communities, delivering technology-enabled, human-centered support to help patients stay healthy and thrive in Medicaid healthcare delivery.
Develop and implement a comprehensive security engineering roadmap aligned with business objectives.
Oversee the design and implementation of security architecture across network, infrastructure, and cloud environments.
Hire, mentor, and manage a high-performing team of security architects and engineers.
Auctane provides mailing and shipping software that helps businesses of all sizes meet industry and customer demands. The company has a global, multicultural team of 20+ nationalities and fosters a casual, inclusive, and people-first culture where diverse perspectives are valued.
Act as the primary security point of contact and trusted advisor for a portfolio of strategic, high-visibility customers, building multi-threaded relationships with security leadership, IT, and engineering teams.
Lead security governance cadences including posture reviews, risk discussions, and roadmap alignment, advising on cloud security controls and best practices across IAM, encryption, monitoring, and vulnerability management.
Partner with internal sales, customer success, support, cloud operations, and product/security teams to reduce risk, improve customer security posture, and drive adoption of cloud security best practices.
Oracle is a global technology company providing cloud computing services, enterprise software, and hardware solutions. It is a major player in the tech industry with a significant employee base and a culture focused on innovation and customer success.
Defining complex security architectures for mergers/acquisitions, leading tech resources through decisions.
Analyzing regulation changes' impact on security architecture, standards, and policies, making updates.
Providing guidance to cybersecurity architects/engineers, offering expertise to the department and stakeholders.
CNO Financial Group secures the future of middle-income America by providing life and health insurance, annuities, financial services and workforce benefits solutions. They have 3,300 associates, 4,900 exclusive agents and more than 6,500 independent partner agents across the U.S.