Chief Information Security Officer

About us:Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians. Our platform is designed to foster healthier food choices, drive lasting behavior change, and deliver long-term health outcomes. Through our highly personalized, digital platform, we guide our 2.2 million members—including those in employer-sponsored health plans, regional and national Medicaid managed care organizations, Medicare Advantage plans, and commercial insurers—on a tailored journey to eating well while saving time and money.
Foodsmart seamlessly integrates dietary assessments and nutrition counseling with online food ordering and cost-effective meal planning for the entire family, optimizing ingredients both at home and on the go. We partner with national and regional retailers across the U.S., many of whom accept SNAP/EBT, making healthier food more accessible. Additionally, we assist members with SNAP enrollment and management, providing tangible access to nutritious food.In 2024, Foodsmart secured a $200 million investment from TPG’s Rise Fund, which supports entrepreneurs dedicated to achieving the United Nations’ Sustainable Development Goals. This investment will help us expand our reach, particularly to low-income workers who are disproportionately affected by diet-related diseases. 
At Foodsmart, our mission is to make nutritious food accessible and affordable for everyone, regardless of economic status. We are committed to a set of core values that shape our culture and work environment:
Measured: We make data-driven, truth-seeking decisions.Impactful: We are fueled by achieving our mission and vision.Collaborative: We help each other be better and create a positive environment.Hungry: We maintain a healthy growth mindset, seeking to overcome challenges with courage.Joyful: We take joy in each other, our work, and the privilege of doing this work.
Whether you're a dietitian, a commercial leader, or a technologist, working at Foodsmart means being part of a team that is passionate, supportive, and driven by a shared purpose. Join us in transforming the way people access and enjoy healthy food.
About the role:The Chief Information Security Officer (CISO) will be responsible for building and executing Foodsmart’s security strategy, ensuring the integrity of our gig economy, SaaS, logistics, and health-tech platforms. This leader will safeguard Foodsmart’s assets, establish robust security frameworks, and drive a culture of security across the organization.

You Will:

• Lead security strategy: Design and execute an enterprise-wide information security strategy that aligns with Foodsmart’s business goals and evolving threat landscape.
• Enhance risk management: Develop robust risk assessment and mitigation frameworks, ensuring proactive identification and management of vulnerabilities.
• Strengthen compliance: Oversee compliance initiatives to meet HIPAA, GDPR, SOC 2, and other relevant standards, ensuring regulatory alignment across Foodsmart’s operations.
• Secure gig economy and SaaS platforms: Build and maintain advanced security protocols to protect Foodsmart’s gig-economy logistics systems, SaaS platforms, and member data.
• Drive innovation: Partner with product and engineering teams to embed security into the design of scalable, tech-driven solutions.
• Establish privacy program: Design, implement, and manage a comprehensive privacy program to ensure compliance with regulations and build customer trust.
• Secure AI initiative: Partner with product and engineering teams to secure AI/ML development and deployment. Address AI-specific issues and ensure data privacy compliance. 
• Manage incident response: Lead a proactive and robust incident response program, ensuring resilience and rapid recovery from cybersecurity threats.
• Cultivate a security-first culture: Develop and implement ongoing training programs that empower employees to prioritize security best practices in daily operations.

You are:

• A strategic leader with extensive experience in cybersecurity for SaaS, gig economy, logistics, e-commerce, or health-tech industries, adept at balancing security with business agility.
• A trusted executive partner who communicates effectively with boards, leadership teams, and external stakeholders on risk management and strategic security initiatives.
• A compliance expert with in-depth knowledge of HIPAA, GDPR, SOC 2, and other regulatory frameworks impacting health-tech and e-commerce environments.
• An innovative problem-solver skilled at navigating complex security challenges with scalable, forward-thinking solutions.
• A champion for data privacy, committed to building and maintaining trust with customers and stakeholders through robust privacy practices.
• A team builder who fosters collaboration across technical and non-technical teams while cultivating a strong culture of cybersecurity awareness.

You have:

• 15+ years of progressive leadership experience in information security, including executive-level roles such as CISO, VP of Security, or similar.
• Strong familiarity with compliance frameworks such as HIPAA, GDPR, SOC 2, and NIST, with a proven ability to implement them in regulated industries.
• Hands-on knowledge of cutting-edge security technologies, including threat intelligence platforms, endpoint protection, SIEM tools, and secure data pipelines.
• Exceptional communication and leadership skills, with experience engaging boards, executive teams, and external partners on security strategies.
• Strong experience developing and implementing privacy programs, including policy creation, compliance monitoring, and incident response. 
• Nice to have: Advanced security certifications such as CISSP, CISM, or CISA and experience working with cloud-based systems like AWS or GCP.

About our benefits and perks:
Remote-First CompanyUnlimited PTOFlexible & remote location Healthcare Coverage (Medical, Dental, Vision)401k, bonus, & stock optionsGym reimbursement 

Foodsmart  is an equal opportunity employer and values diversity. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status, or any other protected class.