Information Security Officer

Human Health Project (HHP) is a holistic health literacy charity. Our mission is to improve the health of the underserved and vulnerable through holistic information, education and advocacy. Our objective is to empower people to manage their own health with improved outcomes and no medical errors. For more information, please visit our website including viewing our "Shared Patient Information" program page which includes 50 pages of reports on both our Migraine and Lupus and feedback received from people who reviewed the reports in the section, "What Our Members are Saying" - https://tinyurl.com/4c5y3mfa and our "Healthcare Access Program" which includes short video courses in our Learning Academy - https://tinyurl.com/4xwdz5wh , Patient Advocacy Workshops in Los Angeles, - https://tinyurl.com/mryave5x and in Northern Ireland - https://tinyurl.com/nhj6kp7p and our Online Peer to Peer Events - https://tinyurl.com/5ddmxuyn

Information Security Officer: Protect the Future of Personalized Health

Join Human Health Project and help us build a unified, secure patient experience driven by data and AI.

Our Mission

At Human Health Project, we believe true wellness starts with understanding your health. Beyond our core holistic health literacy programs, we are launching an ambitious digital initiative: a Unified Patient Experience. This platform will use data and AI to deliver personalized, accessible health guidance to patients, dramatically improving individual outcomes.

The Opportunity

We are seeking a highly skilled and mission-driven Information Security Officer (ISO) to lead our security and compliance efforts. This is a critical leadership role that ensures the privacy and trust of our users remain paramount as we leverage sensitive patient data and cutting-edge AI.

You won't just be maintaining security; you'll be building it into the very foundation of a groundbreaking product that will revolutionize health literacy.

What You Will Do

• Lead Security Strategy: Develop, implement, and manage a comprehensive information security program for the charity, focusing specifically on securing our new Unified Patient Experience platform and its underlying data infrastructure.
• Ensure Compliance: Oversee adherence to all relevant health data privacy regulations (e.g., HIPAA, GDPR, etc., depending on location) and maintain continuous compliance across all programs.
• Secure AI/Data Pipeline: Establish SecDevOps practices and security protocols for our AI/ML pipelines, ensuring the integrity, confidentiality, and ethical use of anonymized patient data.
• Risk Management: Conduct regular risk assessments, penetration testing coordination, and vulnerability management to protect against evolving threats.
• Champion Security: Serve as the organization's expert on information security, privacy, and data governance, training staff and promoting a culture of security awareness.

What You Will Bring

• Proven experience as an Information Security Officer, CISO, or equivalent senior security role.
• Deep expertise in health data security, privacy regulations (e.g., HIPAA, GDPR, COPPA), and compliance frameworks.
• Strong understanding of cloud security (AWS, Azure, or GCP), modern web application security, and security best practices for data lakes/warehouses.
• Familiarity with the security challenges and best practices related to Artificial Intelligence and Machine Learning development.
• Relevant certifications (e.g., CISSP, CISM, CISA) are a significant asset.

If you are passionate about security, dedicated to holistic health, and ready to protect the data that powers a better patient experience, we encourage you to apply.