As VP of Information Security, oversee global security strategy, lead teams across various departments, enhance security policies, and manage audits and certifications.
Sword Health is on a mission to free two billion people from pain.
With 67% of members achieving a pain-free life and a 70% reduction in surgery intent, at Sword, we are using AI Care to change lives, and save millions for our 25,000+ enterprise clients across three continents. Today, we hold the majority of industry patents, win 70% of competitive evaluations, and have raised more than $300 million from top venture firms like Founders Fund, Sapphire Ventures, General Catalyst, and Khosla Ventures.
Recognized as a Forbes Best Startup Employer in 2025, this award highlights our focus on being a destination for the best and brightest talent. Not only have we experienced unprecedented growth since our market debut in 2020, but we’ve also created a remarkable mission and value-driven environment that is loved by our growing team. With a recent valuation of $3 billion, we are in a phase of hyper growth and expansion, and we’re looking for individuals with passion, commitment, and energy to help us scale our global impact.
Joining Sword means committing to a set of core values, chief amongst them to “do it for the patients” every day, and to always “deliver more than expected” on behalf of our members and clients.
This is an opportunity for you to make a significant difference on a massive scale as you work alongside 900+ (and growing!) talented colleagues, spanning three continents. Your charge? To help us build a pain-free world, powered by AI, enhanced by people — accessible to all.
As Chief Information Security Officer, you’ll be responsible for creating and managing a global, enterprise wide security strategy and program. Reporting to the Chief Scientific Officer, you will work cross functionally with our Engineering, Product, Operations, and HR teams to create strategies, policies, and frameworks as they relate to application security, compliance, and security operations.
What You'll be Doing:
- Define and drive Sword's information security roadmap, strategy, tactics, and execution
- Architect programs and processes that evaluate and enhance Sword's information security policies and ensure the security of Sword's security perimeter through monitoring, remediation, reporting, and auditing
- Partner with Sword's engineering and product teams during scoping and execution of all roadmap deliverables to ensure that security concerns are treated as first class product requirements
- Respond appropriately and effectively to security-related incidents and report back to key internal and external stakeholders
- Participate in externally requested security audits from partners
- Lead efforts to continuously review and update company-wide information security policies to align with industry best practices
- Oversee and coordinate security efforts across the company alongside Privacy, Engineering, Ops, HR, Product, and more
- Stay up to date with IT/Security industry trends and evaluate new solutions & techniques
- Launch company-wide security initiatives and training
- Partner with commercial and customer success teams to support customer acquisition and retention.
What You'll Need to Have:
- ~10 years of experience building and leading security teams focused on all aspects of cybersecurity, including identity management, software security, GRC, and security operations, with increasing responsibilities
- Overseen security teams and vendor management
- Experience leading SOC 2, HITRUST, CMMC, FedRAMP or similar audits and/or certifications
- Ability to lead and motivate cross-functional teams while thriving in a fast-paced growing company
- Self-motivation and drive to go above and beyond
- Excellent communication, interpersonal and leadership skills, able to communicate security concepts to both technical and nontechnical audiences
- Experience with IT risk management standards, practices, methods, and frameworks including ISO 27001, COBIT and NIST CSF
- Drive the implementation of an effective digital health program to enhance the patient experience and improve overall outcomes
- Expertise in healthcare financial management, including IT budgeting, financial planning, and operations.
- You must be a US Citizen
We'd Love to See:
- Superior level of mentorship, leadership, and collaboration
- Professional certifications such as CISSP, CISM, etc are preferred
- Prior experience in digital health and health care
- Strong understanding of IL6 (Impact Level 6) environments, with experience implementing security measures in such high-security areas.
- Experience in a high growth company
- Possesses a functional knowledge of ITIL practice
- Experience in building clinical informatics, digital health, and data analytics programs
- Demonstrated understanding of cyber security and potential threats/current landscape
- Functional knowledge of Epic Electronic Medical Records (EMR) system.
US - Sword Benefits & Perks:
• Comprehensive health, dental and vision insurance*
• Life and AD&D Insurance*
• Financial advisory services*
• Supplemental Insurance Benefits (Accident, Hospital and Critical Illness)*
• Health Savings Account*
• Equity shares*
• Discretionary PTO plan*
• Parental leave*
• 401(k)
• Flexible working hours
• Remote-first company
• Paid company holidays
• Free digital therapist for you and your family
*Eligibility: Full-time employees regularly working 25+ hours per week
Note: Applicants must have a legal right to work in the United States, and immigration or work visa sponsorship will not be provided.
SWORD Health, which includes SWORD Health, Inc. and Sword Health Professionals (consisting of Sword Health Care Providers, P.A., SWORD Health Care Providers of NJ, P.C., SWORD Health Care Physical Therapy Providers of CA, P.C.*) complies with applicable Federal and State civil rights laws and does not discriminate on the basis of Age, Ancestry, Color, Citizenship, Gender, Gender expression, Gender identity, Gender information, Marital status, Medical condition, National origin, Physical or mental disability, Pregnancy, Race, Religion, Caste, Sexual orientation, and Veteran status.
Top Skills
Cmmc
Cobit
Epic Electronic Medical Records
Fedramp
Hitrust
Iso 27001
Nist Csf
Soc 2
Similar Jobs
Healthtech • Software • Telehealth
The CISO will develop and maintain cybersecurity strategies, ensuring compliance, risk management, and a security-focused culture while aligning with business objectives.
Top Skills:
Application SecurityCloud SecurityCybersecurityHipaaHitrustMobile SecurityNetwork SecurityPciPenetration TestingRisk ManagementVulnerability Management
Artificial Intelligence • eCommerce • Information Technology • Internet of Things • Automation
Manage and maintain IT infrastructure for Managed Services customers, providing technical solutions, communication, and project leadership while ensuring operational stability.
Top Skills:
AzureDatabasesEnterprise StorageExchangeLinuxMainframeMicrosoft 365MidrangeMonitoring InfrastructureNetworking InfrastructureSecurity ToolsUnixVirtualization TechnologiesWindows
Fintech • Gaming • Mobile • Sports • Esports
Manage DevOps and SRE teams to ensure robust infrastructure operations, optimize systems for performance and scalability, and lead automation initiatives while ensuring security compliance.
Top Skills:
AnsibleAWSDigital OceanDockerGCPKubernetesTerraform
What you need to know about the Charlotte Tech Scene
Ranked among the hottest tech cities in 2024 by CompTIA, Charlotte is quickly cementing its place as a major U.S. tech hub. Home to more than 90,000 tech workers, the city’s ecosystem is primed for continued growth, fueled by billions in annual funding from heavyweights like Microsoft and RevTech Labs, which has created thousands of fintech jobs and made the city a go-to for tech pros looking for their next big opportunity.
Key Facts About Charlotte Tech
- Number of Tech Workers: 90,859; 6.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lowe’s, Bank of America, TIAA, Microsoft, Honeywell
- Key Industries: Fintech, artificial intelligence, cybersecurity, cloud computing, e-commerce
- Funding Landscape: $3.1 billion in venture capital funding in 2024 (CED)
- Notable Investors: Microsoft, Google, Falfurrias Management Partners, RevTech Labs Foundation
- Research Centers and Universities: University of North Carolina at Charlotte, Northeastern University, North Carolina Research Campus
