Listing Description
Our Mission
At Big Health, our mission is to help millions back to good mental health by providing fully digital, non-drug options for the most common mental health conditions. Our digital therapeutics — Sleepio for insomnia, Daylight for anxiety, and Spark Direct for depression — provide treatment anytime, anywhere.
In pursuit of our mission, we’ve pioneered the first at-scale digital therapeutic business model, in partnership with some of the most prominent global healthcare organizations, including CVS Health and the UK’s NHS. Through product innovation, robust clinical evaluation, and a commitment to equity at scale, we are designing the next generation of medicine and the future of mental health care.
Our Vision
Over the next 5-10 years, digital therapeutics (DTx) will transform the delivery of health care worldwide, providing access to safe and effective evidence-based treatments to billions. Big Health is in a prime position to take the lead in this transformation.
Big Health is a remote-first company, and this role can be based anywhere in the US. We encourage you to apply even if you don’t meet 100% of the job requirements.
Join us.
As our Information Security Manager, you will be responsible for developing and implementing comprehensive security policies and procedures, ensuring compliance with relevant regulations, and fostering a culture of security awareness across the organization in accordance with our company strategy.
Job Responsibilities:Develop and execute a robust information security strategy aligned with organizational goals and industry best practicesBe an internal security expert for partner contracting, HITRUST, GDPR, NIST, HIPAA and other state and federal privacy and security requirementsAssess and prioritize security risks and formulate effective risk management strategiesImplementing comprehensive security policies and procedures, ensuring compliance with relevant regulations, and fostering a culture of security awareness across the organization as directed by our company HQ cyber security strategyCollaborate with cross-functional teams to integrate security measures into business processes and applicationsEstablish and maintain information security policies, standards, and guidelinesPerform routine capability and maturity assessments and long-range planning, as well as evaluation of current and future-state toolsets and partnershipsEnsure compliance with relevant data protection laws, regulations, and industry standardsCoordinate and participate in security audits, assessments, and certification processesWork closely with legal to address any security-related legal and regulatory requirementsDevelop and maintain an incident response plan to address security incidents promptly and effectivelyLead incident response efforts, including investigation, containment, and resolutionConduct post-incident analysis and implement corrective actionsEvaluate the security posture of vendors and third-party partnersEstablish and maintain a robust vendor risk management program to ensure the security of third-party relationshipsOversee the selection, implementation, and maintenance of security technologiesWork closely with the IT and infrastructure teams to ensure that security controls are integrated seamlessly into the technology infrastructure for internal tools and systems, as well as for existing productsAssist in security-related documentation (RFPs, PPTs, etc.)
Required Skills and Experience:Bachelor's or Master's degree in information security, cybersecurity, or a related fieldIndustry-recognized certifications such as CISSP/HCISPP, CISM, or CISAMinimum of 5 years of experience in information security managementStrong understanding of relevant data protection laws, regulations, and industry standardsExcellent communication and leadership skillsAbility to collaborate with diverse teams and drive a culture of security awareness
Highly Preferred Experience:Prior experience working in the Healthcare industryExperience in international security regulations (primarily UK / EU)
Life at Big Health:Join a diverse team of all backgrounds, we’re proud to be an equal opportunity employerAutonomy over your work and freedom to inputEnjoy a clearly structured personal review and development programQuarterly happiness survey that we use to ensure we’re creating a healthy and happy workplace for ourselvesFund for spending on personal happinessRegular team and company eventsGenerous vacation and maternity/paternity policyCompetitive salary and equity package
More Background on Big Health:Backed by leading venture capital firms, Index Ventures, Octopus Ventures, and Kaiser Permanente VenturesWith offices in London and San Francisco, Big Health’s products are used by large multinational employers and major health plans to help improve sleep and mental health. To date, more than 12 million people across 60+ countries have access to Sleepio or Daylight
Additionally, we will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the San Francisco Fair Chance Ordinance. Big Health participates in E-Verify and will provide the federal government with Form I-9 information from all new employees to confirm that they are authorized to work in the U.S. Big Health does not use E-Verify to pre-screen applicants.
Listing Details
-
Citizenship:
Not Provided
-
Incentives:
Not Provided
-
Education:
Not Provided
-
Travel:
Not Provided
-
Telework:
Not Provided