Business Information Security Officer (BISO)

Datavant is a data platform company for healthcare whose products and solutions enable organizations to move and connect data securely. Datavant has a network of networks consisting of thousands of organizations, more than 70,000 hospitals and clinics, 70% of the 100 largest health systems, and an ecosystem of 500+ real-world data partners.

By joining Datavant today, you’re stepping onto a highly collaborative, remote-friendly team that is passionate about creating transformative change in healthcare. We invest in our people and believe in hiring for high-potential and humble individuals who can rapidly grow their responsibilities as the company scales. Datavant is a distributed, remote-first team, and we empower Datavanters to shape their working environment in a way that suits their needs.

As a BISO, you will join a dynamic and collaborative team at the intersection of cybersecurity and business strategy. This unique role allows you to serve as the primary bridge between our security organization and key business verticals (Payer, Provider, Life Sciences Ecosystem & Public Sector (LSEPS), and M&A). You will have the opportunity to directly influence and embed security into critical business processes, foster a proactive security culture, and help protect the organization from evolving threats. This role offers the chance to lead impactful initiatives, strengthen relationships across the organization, and drive innovative approaches to security.

Responsibilities:

• Embedding security into business strategies, processes, and culture.
• Aligning cybersecurity initiatives with the unique priorities, risks, and compliance requirements of each vertical.
• Building strong relationships with vertical leaders and key stakeholders, acting as their trusted security advisor.
• Joining vertical leadership teams as a virtual member to advocate for security needs and awareness.
• Sharing security roadmaps and priorities to ensure alignment and proactive engagement.
• Supporting strategic and high-value customers with compliance, assurance, and incident management needs.
• Leading customer calls, audits, and escalations while ensuring tailored security support for vertical customers.
• Tracking customer requests and inputting insights into future security planning and roadmapping.
• Leading communication and coordination for high incidents impacting your vertical.
• Ensuring timely compliance with incident reporting requirements, including vertical-specific needs (e.g., FedRAMP).
• Identifying, assessing, and addressing vertical-specific security risks.
• Ensuring compliance with relevant industry standards and regulations (e.g., CLAD, GCP).

What you will bring to the table: 

• 7+ years of experience in cybersecurity or information security leadership.
• Strong knowledge of risk management frameworks, compliance standards (e.g., FedRAMP, HIPAA), and incident response processes.
• Deep understanding of business processes and strategic priorities in healthcare, life sciences, or related industries.
• Proven ability to align security strategies with business goals and risk appetite.
• Demonstrated experience in working with senior executives and cross-functional teams.
• Exceptional communication and stakeholder management skills to advocate for security priorities and gain buy-in.
• Experience supporting customer assurance efforts, including audits, compliance responses, and incident escalations.
• Strong analytical and decision-making skills to manage security risks and incidents in complex environments.
• Proven ability to navigate unique challenges within dynamic verticals, including mergers and acquisitions.

We are committed to building a diverse team of Datavanters who are all responsible for stewarding a high-performance culture in which all Datavanters belong and thrive. We are proud to be an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status.

Our compensation philosophy is to be externally competitive, internally fair, and not win or lose on compensation. Salary ranges for this position are developed with the support of benchmarks and industry best practices. 

We’re building a high-growth, high-autonomy culture. We rely less on job titles and more on cultivating an environment where anyone can contribute, the best ideas win, and personal growth is driven by expanding impact. The range posted is for a given job title, which can include multiple levels. Individual rates for the same job title may differ based on their level, responsibilities, skills, and experience for a specific job. The estimated salary range for this role is  $180,000-$220,000.

At the end of this application, you will find a set of voluntary demographic questions. If you choose to respond, your responses will be anonymous and used to help us identify areas of improvement in our recruitment process. (We can only see aggregate responses, not individual responses. In fact, we aren’t even able to see if you’ve responded or not.) Responding is your choice and it will not be used in any way in our hiring process.

This job is not eligible for employment sponsorship.