Startup Jobs
Post a Job
bswift

Director, Information Security

Remote

AI overview

Lead bswift’s information security program to protect sensitive data and ensure compliance while collaborating strategically with multiple departments.

Want to be a bswifter? 

At bswift we’ve been transforming benefits administration since 1996, making it simpler, smarter, and more human. Our state-of-the-art, cloud-based technology and services empower employees to understand, manage, and love their benefits. From downtown Chicago, and remotely across the country, we serve thousands of companies and millions of people nationwide, reducing administrative burdens and freeing HR teams to focus on creating thriving, people-first workplaces. 

 We’re looking for motivated and goal-driven individuals who share our passion for delivering excellence and creating solutions that make a difference. The reward is a fun, flexible and creative environment with ample opportunity for professional and personal growth. If you love the bswift values of pursue excellence, embrace accountability, deliver superior service, and be a great place to work, we want to hear from you! 

 

ABOUT US

bswift is a leading benefits administration company that specializes in providing tailored solutions for our clients. Our mission is to simplify the complex world of employee benefits and deliver exceptional service to our clients. We are looking for a seasoned security leader to join our team as the Director of Information Security.

WHAT YOU’LL DO

The Director of Information Security is a senior leader responsible for owning, scaling, and continuously maturing bswift’s enterprise information security program. Reporting to the Chief Information Security Officer (CISO), this role provides strategic leadership and operational oversight to protect sensitive healthcare data, ensure regulatory compliance, and enable secure growth of a cloud‑based SaaS platform.

This role partners closely with executive leadership, Product, Engineering, IT, Legal, Privacy, and Customer Operations to embed security into business strategy and day‑to‑day execution. The Director balances risk management with business agility while maintaining customer trust and regulatory confidence.

WHAT YOU WILL BE RESPONSIBLE FOR (Essential Functions)

Reasonable accommodations may be made to enable individuals with disabilities to perform these essential functions.

Security Strategy, Program Ownership & Governance

  • Own and evolve the enterprise information security program aligned with business objectives, regulatory requirements, and risk tolerance.
  • Translate security strategy into multi‑year roadmaps, annual operating plans, and measurable outcomes.
  • Establish and maintain security governance, policies, standards, and procedures for a healthcare SaaS environment.
  • Serve as a senior security advisor to executive leadership and key business stakeholders.
  • Support the CISO in enterprise risk discussions, audits, and Board‑level reporting as needed.

Benefits & Healthcare Data Protection

  • Ensure strong safeguards for PII and PHI across the full benefits administration lifecycle.
  • Lead customer security due diligence efforts, including questionnaires, audits, and Business Associate Agreements (BAAs).
  • Partner with Legal, Privacy, and Compliance teams on risk assessments, incident response readiness, and regulator‑appropriate handling.
  • Own or provide executive oversight for compliance with HIPAA/HITECH, HITRUST CSF, and SOC 2 Type II.

Security Operations & Incident Management

  • Provide strategic oversight of security operations, including threat detection and response, vulnerability management, IAM, endpoint security, and monitoring.
  • Act as an executive leader during security incidents, overseeing containment, communication, remediation, and post‑incident reviews.
  • Ensure continuous improvement of controls, playbooks, and response capabilities.

Cloud, SaaS & Platform Security

  • Partner with Engineering and Infrastructure leadership to secure AWS and/or Azure environments, CI/CD pipelines, and SaaS architecture.
  • Ensure security is embedded into SDLC, cloud design, configuration management, and change management processes.
  • Champion secure‑by‑design and defense‑in‑depth principles across the technology organization.

Vendor, MSSP & Third‑Party Risk Management

  • Own strategic relationships with MSSPs, MDR providers, and key security vendors.
  • Lead RFPs, vendor evaluations, contract negotiations, and renewals.
  • Oversee third‑party risk management for vendors handling sensitive benefits and healthcare data.

Metrics, Reporting & Executive Communication

  • Define and monitor security KPIs, KRIs, and control maturity metrics.
  • Deliver concise, actionable security reporting to the CISO and executive leadership.
  • Communicate complex security risks and recommendations in clear, business‑focused language.

Team Leadership & Security Culture

  • Build, lead, and develop a high‑performing information security organization.
  • Set clear expectations, career paths, and development plans for team members.
  • Foster a culture of accountability, collaboration, and continuous improvement.
  • Lead enterprise‑wide security awareness and training initiatives.
  • Champion a security‑first mindset that enables innovation and growth.

WHAT YOU NEED TO SUCCEED (Required Education & Experience)

  • 10+ years of progressive information security experience, including 5+ years in senior leadership roles.
  • Demonstrated experience owning and scaling security programs in SaaS, benefits administration, HR tech, or healthcare‑adjacent environments.
  • Deep working knowledge of:
    • HIPAA/HITECH
    • HITRUST CSF
    • SOC 2
    • NIST CSF and/or ISO 27001
  • Strong understanding of cloud security architecture (AWS and/or Azure).
  • Proven leadership during security incidents with executive‑level and regulator‑appropriate communication.
  • Experience managing MSSPs, MDR providers, and third‑party risk programs.
  • Strong program and stakeholder management skills with executive presence.

NICE TO HAVE (Preferred Qualifications)

  • CISSP, CISM, CISA, or similar certifications.
  • Experience supporting large healthcare customers, payers, or providers.
  • Familiarity with GDPR, CCPA, or other global privacy frameworks.
  • Experience scaling security programs in high‑growth or private‑equity‑backed SaaS organizations.
  • Comfort serving as a customer‑facing security SME during audits and sales cycles.

KEY ATTRIBUTES FOR SUCCESS

  • Customer‑trust oriented and risk‑aware.
  • Strategic thinker with strong operational execution skills.
  • Makes balanced, risk‑based decisions aligned to business priorities.
  • Clear, confident communicator with executives and technical teams.
  • People‑first leader who builds durable, scalable security capabilities.

EDUCATION

Bachelor’s degree in Information Security, Computer Science, or a related field, or equivalent practical experience.

OTHER DUTIES

This job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities required of the employee. Duties and responsibilities may change at any time with or without notice.

 

 

Why Join bswift?

At bswift, we empower our employees to make a meaningful impact, innovate, and grow. Joining our team means stepping into a collaborative and dynamic environment that values creativity, initiative, and a passion for client success. We are dedicated to fostering an inclusive workplace that celebrates diversity and values each team member’s unique contributions.

Benefits of Working at bswift:

  • Comprehensive Health Benefits: Access to health, dental, and vision plans to support your wellness and that of your family.
  • Competitive Compensation: A compensation package that recognizes your skills, experience, and contributions, including performance-based incentives for most roles.
  • Remote first, Office friendly environment! No time to commute?  No problem!
  • Retirement Savings Plans: Options to help you plan for a secure financial future with employer-sponsored retirement savings programs.
  • Professional Development: Opportunities for career growth, including training and access to resources to support your career progression.
  • Supportive Culture: A work environment that encourages collaboration, open communication, and creative problem-solving, where your voice and ideas are valued.
  • Employee Wellbeing Initiatives: Programs focused on mental health, financial planning, and wellness resources to help you thrive inside and outside of work.

Make an Impact: At bswift, your work directly contributes to transforming how organizations approach benefits administration and client engagement. Join us to be part of an organization that is making a meaningful difference in the lives of our clients and their employees.

Specific benefit offerings vary by position and may be subject to change.

 

Standard working hours are 8am-5pm Central Time, unless otherwise stated in the Job Description. 

 

 

In the spirit of pay transparency, we are excited to share the base salary range for this position is $180,000-$210,000, exclusive of fringe benefits or potential bonuses.  If you are hired at bswift, your final base salary compensation will be determined based on factors such as geographic location, skills, education, and/or experience. In addition to those factors – we believe in the importance of pay equity and consider internal equity of our current team members as a part of any final offer. Please keep in mind that the range mentioned above is the full base salary range for the role. Hiring at the maximum of the range would not be typical in order to allow for future & continued salary growth. We also offer a generous compensation and benefits package!

At bswift, our mission is clear: Become the preeminent benefits administrator through exceptional people, innovative technology, and delighted customers. And our values are at the heart of everything we do to accomplish that mission. We Pursue Excellence, Embrace Accountability, Deliver Superior Service, and strive to Be A Great Place To Work. We take pride in having an engaged, collaborative team that goes the extra mile to get the job done right.  

 bswift has been regularly named one of Chicago’s Best and Brightest Companies to Work For®, as well as one of the Nation’s Best and Brightest Companies to Work For® year after year. We offer a fun, flexible, and creative environment where you can grow both professionally and personally. 

If you have what it takes to join our award-winning culture, we’d love to hear from you! 

 

Perks & Benefits Extracted with AI

  • Health Insurance: Access to health, dental, and vision plans to support your wellness and that of your family.
  • Employee Wellbeing Initiatives: Programs focused on mental health, financial planning, and wellness resources to help you thrive inside and outside of work.
  • Paid Time Off: Opportunities for career growth, including training and access to resources to support your career progression.
  • Remote-Friendly: Remote first, Office friendly environment! No time to commute? No problem!
bswift

For us, everything starts withthe right people. If you’re ready to take the next step in your career and make a difference for others, we’re always looking for people ready to have fun rewriting the rules of benefits administration. Check out our current open positions.

Website LinkedIn
View all jobs
Salary
$180,000 – $210,000 per year
Ace your job interview

Understand the required skills and qualifications, anticipate the questions you may be asked, and study well-prepared answers using our sample responses.

Director Q&A's
Report this job
Apply for this job