Virtual Chief Information Security Officer – vCISO

🔥 0 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Triplemoon

WebsiteLinkedInAll Job Openings

11 - 50 employees

Founded 2024

☁️ SaaS

🤝 B2B

🧘 Wellness

SaaS • B2B • Wellness

Triplemoon is a behavioral health company that integrates pediatric mental health services directly into primary care practices and employers’ offerings. They deliver evidence-based, collaborative care — including behavioral interventions, care coordination, psychiatric consultation, prescription management, and family education — supported by a patient-facing app and provider-facing workflows. Triplemoon partners with clinicians and organizations to expand access to pediatric behavioral health, improve outcomes, and create new revenue streams; many services are covered by commercial and Medicaid plans.

📋 Description

• Own the strategy, design, implementation, and continuous improvement of Triplemoon's information security and compliance program. • Ensure ongoing compliance with HIPAA and healthcare security best practices. • Lead readiness efforts for future SOC 2 certification and other security frameworks as needed. • Develop, maintain, and document security policies, procedures, and controls. • Coordinate security incident response, investigation, remediation, and post-incident reviews. • Support customer security questionnaires, audits, and compliance requests. • Partner with leadership to identify, assess, and mitigate information security risks. • Manage and oversee an IT MSP or MSSP who can implement security controls and compliance within SaaS vendors and IT systems. • Provide tiered end-user support for hardware, software, and SaaS application issues. • Provide device and asset management. • Manage identity and access, including systems for onboarding and offboarding. • Maintain system documentation, operating procedures, and technology standards. • Recommend and implement improvements to strengthen security, scalability, and user experience. • Conduct security reviews of third-party vendors and software platforms. • Maintain required security documentation, including BAAs, DPAs, SOC reports, and related compliance artifacts. • Monitor vendor compliance and support periodic risk assessments.

🎯 Requirements

• 7+ years of experience in information security, IT administration, compliance, or related roles. • Experience serving as a vCISO, security leader, or senior security consultant. • Strong knowledge of HIPAA Security Rule requirements and healthcare security best practices. • Experience preparing organizations for SOC 2 audits and other compliance frameworks. • Experience supporting early-stage startups or high-growth healthcare organizations. • Hands-on experience administering Google Workspace, identity management platforms, endpoint management tools, and SaaS environments. • Familiarity with remote workforce security and cloud-first technology environments. • Excellent documentation, communication, and stakeholder management skills. • Ability to operate independently while serving as a strategic advisor to company leadership.

🏖️ Benefits

• Competitive, based on experience and scope