CrawlJobs Logo
Click Therapeutics Logo Click Therapeutics · IT - Administration

Information Security Lead

United States, New York 130000.00 - 180000.00 USD / Year · Job Posted March 13, 2026
Apply Position
Job Link Share

Job Description

As Information Security Lead, you'll be at the forefront of safeguarding our groundbreaking digital therapeutics. We're seeking an individual with deep technical expertise in information security in the healthcare sector, ready to tackle complex challenges and pioneer innovative solutions. This isn't just a role; it's an opportunity to build, mentor, and inspire a high-performing team, while strategically collaborating across diverse departments to embed security into the very fabric of our revolutionary products. Your ability to swiftly master new technologies and meticulously adhere to processes in a highly regulated environment will be crucial as you champion information security across every facet of our company and with all our valued partners.

Job Responsibility

  • Maintain, and continually improve the Information Security Management System (ISMS) to maintain relevant certifications (e.g., ISO 27001, SOC 2, IEC 81001-5-1 and UK Cyber Essentials Plus).
  • Lead the technical security aspects of data privacy to ensure compliance with GDPR, CCPA, and HIPAA.
  • Lead and mature the company's Security Operations Center (SOC) capabilities, including threat intelligence, monitoring, detection, and analysis.
  • Responsible for collecting, analyzing, escalating, and responding to cybersecurity vulnerabilities, threats, and attacks using SIEM and EDR technologies.
  • Collaborate with Engineering to ensure Secure Development Lifecycle (SDLC) practices are followed, integrating threat modeling, static/dynamic analysis, fuzz testing, and formal verification into the development process.
  • Develop and maintain reporting of Key Performance Indicators (KPIs) of threats and incidents, including incident response timeliness and general observability metrics.
  • Oversee security testing activities, including penetration testing and vulnerability scanning.
  • Conduct security training and awareness programs for employees to promote a culture of security.
  • Oversee all third-party and vendor risk management activities
  • Collaborate with Quality and Regulatory on cybersecurity processes
  • Support regulatory submissions by generating Cybersecurity Quality Management System (QMS) documentation, ensuring compliance with FDA Cybersecurity Guidance (2025), EU MDR, NIST 800-53, IMDRF, and AAMI TIR57.

Requirements

  • Experience within a highly regulated industry such as medical devices, pharmaceuticals, biotechnology, or healthcare
  • Understanding of common security frameworks and standards, including NIST Cybersecurity Framework (CSF), ISO 27001/27002, and SOC 2.
  • Knowledge of risk assessment methodologies, threat modeling, network security, cloud security (AWS), application security, and data protection technologies.
  • Experience leading or participating in formal security audits.
  • Experience in interfacing with engineering teams and running in tiger-teams or embedded SME Scrum teams.
  • Leadership and communication skills, with the ability to articulate complex security concepts to technical and non-technical audiences.

What we offer

  • Competitive Salary with Annual Review
  • Cash Bonus
  • Stock Options
  • 5% 401(k) matching
  • Medical
  • Dental
  • Vision
  • Life Insurance
  • Voluntary Benefits
  • Unlimited PTO
  • Uber One
  • Nectar Rewards
  • One Medical
  • Fertility Support
  • Fitness Reimbursement
  • Bike Membership
  • Professional Development Stipend
  • DoorDash and Catered Lunches
  • Parent Benefits
  • LinkedIn Learning
  • Gemini Enterprise Stack
  • Industrious Workspaces
  • Commuter Subsidies
  • Flexible Work Arrangement
  • Choice of Mac or Windows
  • Sponsored Company Events
  • Office Snacks and Beverages
Click Therapeutics - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Information Security Lead

8 matching positions

Information Security Lead

We’re hiring a Lead of Information Security, reporting to the VP of Technical Op...
Location
Location
United States , Philadelphia
Salary
Salary:
Not provided
Proscia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in information security, including direct experience improving, and contributing to GRC programs
  • Proven expertise in regulatory frameworks such as ISO 27001, SOC 2, GDPR, HIPAA, FedRAMP, TX-RAMP, StateRAMP or similar
  • Hands-on experience with vulnerability management tools, incident response, and security audits
  • Experience embedding security into software development lifecycles—DevSecOps principles applied in practice
  • Experience selecting, implementing, and managing security tooling (e.g., XDR, SIEM, endpoint, code scanning, etc.)
  • Exceptional communication and influencing skills across technical and non-technical teams
  • A high degree of autonomy and ownership—comfortable leading cross-functional efforts and prioritizing in a dynamic environment
  • You already use AI tools in your security work—for policy drafting, threat analysis, log review, control validation, or however it fits your practice
  • Experience with cloud-native environments (AWS preferred)
  • Experience building with or on top of LLMs, AI agents, or agentic pipelines
Job Responsibility
Job Responsibility
  • Manage and evolve vulnerability management— tooling, reporting, and remediation governance
  • Serve as a consultative security leader for Engineering, Product, and Customer teams—governing system designs, architecture, and implementation through a security-first lens
  • Implement AI native tooling to improve detection and response capabilities without incurring an increased demand on resources
  • Partner with Engineering to implement developer-friendly security tools that improve security posture and reduce compliance burdens without slowing velocity
  • Oversee incident response preparation, processes, and execution—ensuring coordinated action, effective communication, and the kind of thorough post-incident analysis that prevents the same problem twice
  • Under the direction VP, TechOps, improve the Proscia Information Security Program, with a focus on governance, risk, and compliance (GRC) across the Concentriq suite of applications and Proscia’s business applications
  • Contribute to security policy development across regulated and non-regulated markets—implementing agentic workflows where it accelerates your research and stress-testing, iterating with stakeholders, and maintaining the rigor and compliance standards our customers expect
  • Influence and execute on the company’s regulatory roadmap—seeking new certifications and frameworks (e.g., ISO 27001, SOC 2, HITRUST) in response to customer and market demands
  • Enable other teams to answer security-related questions from customers, prospects, and partners providing expert information security guidance
  • Anticipate and adapt to industry and regulatory trends, including how AI is reshaping both the threat landscape and the defender’s toolkit—and surface emerging requirements before they become urgent
What we offer
What we offer
  • Competitive pay
  • Savings options
  • Schedule options
  • Insurance options that promote long-term health and personal growth
  • Office environment designed for creativity and agility with walls as notepads and couches for collaboration
  • Located in the heart of Philadelphia with views of the city
  • Fulltime
Read More
Arrow Right

Information Security Lead

We are looking for an experienced Information Security Lead to manage and enhanc...
Location
Location
United States , McAllen
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, or a related field, or equivalent experience
  • A minimum of 5–8 years of experience in information security or cybersecurity operations
  • Proven hands-on expertise with security technologies such as SIEM tools, vulnerability management systems, and endpoint protection solutions
  • Strong knowledge of identity and access management (IAM) principles, including privileged access controls and least privilege enforcement
  • Familiarity with cybersecurity compliance and risk management frameworks
  • Demonstrated ability to lead and coordinate responses to security incidents
  • Experience in developing and tracking security metrics, including KPIs and KRIs
  • Strong communication and collaboration skills to work effectively with IT teams, application teams, and business units
Job Responsibility
Job Responsibility
  • Direct and oversee daily security operations, including monitoring and triaging alerts, ensuring proper escalation procedures are followed
  • Develop and fine-tune detection use cases to address evolving security threats effectively
  • Implement and maintain robust security controls across all platforms and systems
  • Drive automation and orchestration efforts to improve operational efficiency and reduce manual processes
  • Lead incident response efforts, coordinating containment, eradication, and recovery activities across IT and business units
  • Maintain and regularly test incident response procedures and playbooks, ensuring readiness for security events
  • Supervise user provisioning and deprovisioning processes, enforcing access controls and periodic access reviews
  • Conduct risk assessments and ensure the implementation of security policies and procedures organization-wide
  • Develop and manage key performance and risk indicators to monitor and improve the organization's security posture
  • Mentor and provide leadership to security analysts and engineers, fostering a culture of collaboration and accountability
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right

Information Security Lead

The Security Lead is responsible for building and executing a comprehensive cybe...
Location
Location
India , Pune
Salary
Salary:
Not provided
globalstep.com Logo
GlobalStep
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8–15 years cybersecurity experience
  • Experience building security programs
  • Strong SOC and risk knowledge
  • Experience with compliance frameworks
  • Strong communication skills
Job Responsibility
Job Responsibility
  • Define and execute security roadmap
  • Establish policies and risk management
  • Build SOC capabilities
  • Lead incident management
  • Support audits and compliance
What we offer
What we offer
  • Greenfield opportunity to build a security program
  • High visibility role with leadership and client exposure
  • Ability to design SOC and governance from ground up
  • Shape secure architecture across organization
  • Career path toward CISO-level leadership
Read More
Arrow Right

Lead Information Security Engineer - Cryptographic Products and Services

Wells Fargo is seeking a motivated Lead Information Security Engineer to join an...
Location
Location
United States , Irving; Charlotte; Columbus
Salary
Salary:
119000.00 - 187000.00 USD / Year
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
June 21, 2026
Flip Icon
Requirements
Requirements
  • 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 4+ years of intermediate to advanced level experience with scripting/automation using tools such as: Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc.
  • 4+ years of Linux and Windows server experience.
Job Responsibility
Job Responsibility
  • Drive design, deployment and automation strategies for encryption, tokenization and key management products and services including Hardware Security Modules, security appliances and security applications deploying in physical, virtual, and containerized environments
  • Provide technical guidance and oversight to teams and team members responsible for product delivery and operational maintenance
  • Develop and maintain documentation including design and build guides, deployment strategies, automation guides and operational processes
  • Participate in research, analysis and evaluation of new cryptographic products and services
  • Participate in Proof of Concept (POC) testing and demonstrations for new cryptographic products and services
  • Support company driven audits, gather evidence of compliance to company policies, and drive product enhancements, when needed, to remediate findings
  • Conduct technical investigation of incidents to identify causes and recommend future mitigation strategies
  • Collaborate across Wells Fargo teams, including compliance, security architecture and security evaluation teams to ensure cryptographic products are compliant to company policies
  • Work with vendors to understand the technology vendor's roadmap, help to influence that roadmap, and ensure requests for technology/product enhancements are meeting the needs of Wells Fargo
  • Work with partner engineering teams on identification and remediation of security vulnerabilities and may also conduct risk assessments of infrastructure to ensure compliance with corporate security policies and adherence to best practices
What we offer
What we offer
  • Health benefits
  • 401(k) Plan
  • Paid time off
  • Disability benefits
  • Life insurance, critical illness insurance, and accident insurance
  • Parental leave
  • Critical caregiving leave
  • Discounts and savings
  • Commuter benefits
  • Tuition reimbursement
  • Fulltime
Read More
Arrow Right

Lead Information Security Engineer

My client is seeking an experienced Lead Information Security Engineer to suppor...
Location
Location
Ireland
Salary
Salary:
Not provided
nicollcurtin.com Logo
Nicoll Curtin
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong background in information security engineering within large environments
  • Hands-on experience with security governance, data protection, and risk management
  • Exposure to SaaS, cloud applications, and third-party risk
  • Confidence making and defending risk-based decisions
  • Experience with policy interpretation, enforcement, and escalation management
  • Strong analytical and documentation skills
Job Responsibility
Job Responsibility
  • Own key elements of the Shadow IT enforcement and governance process
  • Define and operate a blocking and escalation framework for unapproved applications
  • Assess risk based on data sensitivity, access, and exposure
  • Manage exceptions, unblock requests, and high-impact escalations
  • Document decisions clearly, including technical impact and policy alignment
  • Work closely with security, technology, legal, privacy, and business teams
  • Track and report Shadow IT metrics, trends, and outcomes
  • Contribute to the ongoing maturity of a scalable Shadow IT governance model
  • Fulltime
Read More
Arrow Right

Information Security Lead Analyst

Location
Location
Hungary , Budapest
Salary
Salary:
17157800.00 - 28767800.00 HUF / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years of relevant experience
  • Additional technical certifications are preferred
  • Demonstrated ability to research and apply current information regarding the IS field
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor's degree/University degree or equivalent experience
  • Master's degree preferred
Job Responsibility
Job Responsibility
  • Develop corrective action language for Information Security (IS) gaps and ensure risk closure meets Citi requirements or industry best practices
  • Facilitate the implementation of approved IS tools and identify/recommend new or improved security solutions or emerging technologies
  • Mitigate risk by analyzing the root cause of issues, impacts to business, and required corrective actions and develop security solutions
  • Ensure IS compliance and seek opportunities to enhance the efficiency of IS policies and procedures
  • Identify significant IS threats and vulnerabilities, and define appropriate controls for discovered threats, documenting the business response
  • Disseminate changes to IS regulations and standards to Business and Program owners
  • Provide Information Security advice and counsel as needed
What we offer
What we offer
  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Fulltime
Read More
Arrow Right

Senior Lead Information Security Office Consultant

As a Senior Lead Consultant in Capital One’s Cyber Information Security Office (...
Location
Location
United States , McLean
Salary
Salary:
229900.00 - 262400.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cyber security or information technology
  • At least 5 years of experience providing guidance and oversight of cyber security concepts
  • At least 4 years of experience performing cyber security risk assessments and cyber security architecture reviews
  • At least 4 years of experience with architecture, software design, networking or cloud infrastructure
Job Responsibility
Job Responsibility
  • Act as a central Information Security point of contact for a portfolio of customer servicing technology assets
  • Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management
  • Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
  • Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
  • Escalate and manage cyber security risk
  • Provide ad hoc support on special Information Security hot topics for the business
  • Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
  • Work with line of business leadership to anticipate their objectives and needs to better serve the line of business
What we offer
What we offer
  • Performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • comprehensive, competitive, and inclusive set of health, financial and other benefits
  • Fulltime
Read More
Arrow Right

Lead Information Security Engineer - Python Full Stack Developer

Wells Fargo is seeking a Lead Information Security Engineer.
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
June 29, 2026
Flip Icon
Requirements
Requirements
  • 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 5+years of experience in Software Engineering, Data Engineering, or a backend development python development and backend architecture
  • Expert level knowledge of Python internals, concurrency (Asyncic/Multiprocessing) and building high performance, memory efficient applications
  • Proven expertise in designing and governing enterprise grade CI/CD pipelines and must manage complex code promotions across multi-region environments using GIT hub actions, Git Lab, or Azure DevOps
  • Extensive hands-on experience with Apache Kafka (or Confluent), including cluster tuning, schema registry management and designing event driven architectures
  • Deep experience with Grafana and Prometheus for full stack observability – defining SLIs/SLOs, custom exporters and complex alerting logic
  • Strong understating of the end-to-end ML life cycle, specifically in the deployment and scaling of models using frameworks like BentoML, Ray, or KServe
  • Experience in SQL, data modelling, ETL/ELT pipelines, and large-scale data processing
  • Good to have knowledge in Terraform, Palumi and container orchestration – Kubernetes, EKS
Job Responsibility
Job Responsibility
  • Lead computer security incident response activities for highly complex events
  • Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
  • Provide security consulting on large projects for internal clients to ensure conformity with corporate information, security policy, and standards
  • Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
  • Review and correlate security logs
  • Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
  • Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
  • Collaborate and influence all levels of professionals including managers
  • Lead a team to achieve objectives
  • Lead the development of mission critical python services, ensuring high availability and low latency performance
  • Fulltime
!
Read More
Arrow Right