Head of Information Security
TonicFull Time
Senior (5 to 8 years), Expert & Leadership (9+ years)
Candidates should possess 10+ years of information security experience, including at least 4 years in a leadership or program ownership role. They require a strong technical background in security engineering, infrastructure security, or secure software development, along with experience maintaining certifications such as SOC 2, HIPAA, HITRUST, or ISO 27001 in production environments. Furthermore, candidates must be skilled in secure SDLC practices, cloud security (GCP preferred), threat modeling, and risk assessment, and have familiarity with corporate and IT security controls, including SaaS platforms, identity management, and endpoint security.
The Engineering Manager, Information Security will lead and scale Notable’s security program across product, infrastructure, corporate systems, and compliance. They will maintain and enhance existing certifications (HIPAA, HITRUST, SOC 2) and support ongoing ISO 27001 efforts, guide product and application security, including threat modeling and architecture reviews, and enhance AI governance and customer data compliance controls. Additionally, they will partner with engineering to improve internal security tooling, IAM, CI/CD security, and vulnerability management, oversee incident response, disaster recovery, and detection programs, manage corporate security, and collaborate with legal and compliance to manage vendor risk and customer security reviews. Finally, they will lead internal training and security awareness programs for engineers and employees.
Intelligent automation platform for healthcare providers
Notable Health offers an intelligent automation platform that streamlines administrative and patient-facing workflows for healthcare providers. The platform automates tasks like scheduling and care gap outreach, allowing for a more efficient and personalized patient experience. It is designed for hospitals and medical groups, helping them tackle staffing shortages and improve operational efficiency. Clients benefit from a quick implementation process and have reported high satisfaction rates and improved workflow capacity.