ReviveRX · 7 hours ago
IT Director of Information Security
Houston, TX
Full-time
Hybrid
Director/Executive
8+ years expReviveRX is a premier licensed pharmacy specializing in health, wellness, and restorative medicine. They are seeking an experienced cybersecurity leader to establish and mature their Information Security and Governance, Risk, and Compliance program, building a world-class security posture for the organization.
Health CarePharmaceuticalPrecision Medicine
Responsibilities
Establish and execute a comprehensive information security strategy covering governance, risk, compliance, and cybersecurity operations
Lead enterprise-wide risk management and reporting aligned with organizational risk tolerance
Provide independent oversight of information security practices separate from day-to-day IT operations
Serve as the organization's subject matter expert for information security and cybersecurity risk
Deliver regular updates to Executive Leadership on security posture, emerging risks, and program maturity
Develop, maintain, and enforce information security policies, standards, procedures, and supporting documentation
Lead tech compliance efforts for SOC 2, HIPAA, and FDA regulatory requirements
Manage third-party risk management efforts, including vendor security assessments and ongoing monitoring
Conduct business impact analyses and maintain business continuity and disaster recovery planning initiatives
Assess business risk and apply practical, risk-based security controls across the organization
Lead and mentor a team of information security professionals to ensure consistent, high-quality security practices
Oversee identity and access management, data protection, loss prevention, and security monitoring capabilities
Direct incident response activities, including investigation, containment, remediation, and post-incident improvement efforts
Manage and optimize security technology stack to strengthen organizational defenses
Collaborate with Legal, Human Resources, Compliance, Facilities, and Executive Leadership to align policies and controls
Drive organization-wide security awareness and training programs for employees and leadership
Stay current on emerging threats, regulatory changes, and industry best practices through professional networks and ongoing education
Qualification
Required
Bachelor's degree in information systems, computer science, business, or related discipline
Industry certifications such as CISSP, CISM, or CISA
8+ years of progressive experience in information security, risk management, or cybersecurity
6+ years in a leadership or management role
Expert knowledge of security frameworks and regulatory standards (ISO 27001, HIPAA, SOC 2)
Extensive experience building and operating enterprise information security programs in regulated environments, preferably within pharmaceuticals, healthcare, or similar industries
Expertise in governance, risk, and compliance (GRC) frameworks
Deep knowledge of third-party/vendor risk management
Proven incident response and threat management capabilities
Experience designing and implementing security awareness and training programs
Familiarity with security technologies such as firewalls, VPNs, access controls, and monitoring tools
Ability to assess business risk and apply practical, risk-based security controls
Proven ability to manage multiple initiatives, meet deadlines, and lead cross-functional collaboration
Strong written and verbal communication skills with the ability to influence at executive levels
Strategic thinker who can also execute tactically; Not afraid to get hands-on when needed
Company
ReviveRX
ReviveRX is a leading licensed mail-order pharmacy specializing in generic and compounded medications.
51-200 employees
Funding
Current Stage
Growth StageLeadership Team
Aaron Schneider
Co-Founder
Company data provided by crunchbase