Vice President, Information Security

About Virta Health

Virta Health is on a mission to transform type 2 diabetes and weight-loss care. Current treatment approaches aren’t working—over half of US adults have either type 2 diabetes or prediabetes, and obesity rates are at an all-time high. Virta is changing this by helping people reverse their metabolic condition through innovations in technology, personalized nutrition, and virtual care delivery reinvented from the ground up. We have raised over $350 million from top-tier investors, and partner with the largest health plans, employers, and government organizations to help their employees and members restore their health and take back their lives. Join us on our mission to reverse diabetes in one billion people.

Role Overview

The Vice President of Information Security will lead Virta’s enterprise-wide information security program, setting a long-term strategic vision that safeguards our data, systems, and customer trust. As the most senior security leader in the organization, you will oversee all aspects of Virta’s security posture—including risk management, regulatory compliance, and incident response—and be responsible for developing and executing a comprehensive roadmap that aligns with our growth and evolving threat landscape. This role reports to the General Counsel and regularly communicates with the Board of Directors, Executive Team, large-scale customers, and other critical stakeholders. You will shape the future of security at Virta by driving cross-functional alignment, fostering a resilient and scalable security culture, and ensuring that our security investments enable innovation and trust at scale.

Responsibilities

Security Strategy and Vision

• Define and maintain an enterprise-wide security vision and strategic roadmap (2+ years), ensuring alignment with business goals and long-term growth.
• Serve as the senior-most authority on information security, responsible for the organization’s overall security posture and risk landscape.
• Participate in board-level and executive leadership discussions, providing strategic guidance on security implications of corporate initiatives and business operations.

Team Leadership and Organizational Design

• Architect and continuously evolve the organizational structure of the security team, including headcount planning, role design, and succession planning.
• Cultivate a high-performance, values-driven security culture.
• Manage and mentor senior security leaders (directors and managers), fostering professional growth and ensuring strong leadership continuity.
• Build coverage and redundancy into security operations to mitigate single points of failure and maintain resilience.

Budgeting and Resource Allocation

• Own and manage the security budget, ensuring optimal allocation of resources across people, processes, and technology.
• Approve key spending decisions, including technology investments, third-party vendors, audit engagements, and staffing.

Stakeholder and External Engagement

• Act as the primary point of contact for internal and external security-related engagements.
• Partner with executive leadership and department heads to align security efforts with company objectives.
• Represent Virta in customer conversations, industry forums, and peer networks as a public-facing security leader.
• Maintain strong relationships with industry partners, regulators, auditors, and large enterprise clients.

Enterprise Risk Management

• Define and implement an enterprise risk tolerance strategy, in coordination with broader corporate governance.
• Lead the development and execution of risk management frameworks, ensuring consistent identification, mitigation, and reporting of risks.
• Deliver high-level risk and compliance reports to executive stakeholders and the Board.
• Oversee the response to critical incidents and crisis events, ensuring transparent communication and swift resolution.

Technology and Innovation Leadership

• Establish a forward-looking vision for security technology

Employment Details

• Salary: $225K - $285K
• Location Type: Remote
• Employment Type: FullTime