At H1, we believe access to the best healthcare information is a basic human right. Our mission is to provide a platform that can optimally inform every doctor interaction globally. This promotes health equity and builds needed trust in healthcare systems. To accomplish this our teams harness the power of data and AI-technology to unlock groundbreaking medical insights and convert those insights into action that result in optimal patient outcomes and accelerates an equitable and inclusive drug development lifecycle. Visit h1.co to learn more about us.

H1’s IT and Security team enables enterprise trust by ensuring our systems, data, and infrastructure meet the security, privacy, and compliance expectations of customers, partners, and regulators. As we continue scaling in highly regulated healthcare and life sciences markets, strengthening our security leadership is a top priority.

WHAT YOU’LL DO AT H1:

As Director, Information Security & IT, you will lead and mature H1’s security-first technology operations. This role is primarily focused on Information Security leadership, with oversight of our Information Technology team.

You will be responsible for building a resilient, compliant, and high-performing technology foundation that enables enterprise growth, reduces operational risk, and strengthens customer trust.

You will:

- Own and operate H1’s Information Security program end-to-end, including governance, policy development, risk management, and continuous improvement.
- Lead all certification and audit programs (SOC 2 Type II, ISO 27001, HIPAA and future frameworks as needed), ensuring ongoing audit readiness and measurable control effectiveness.
- Oversee incident response, change management, problem management, and technical risk mitigation programs.
- Serve as the executive security leader supporting enterprise sales cycles, including RFP responses, due diligence reviews, and direct engagement with customer security stakeholders.
- Act as a trusted advisor to executive leadership on cyber risk strategy, compliance posture, and regulatory alignment.
- Lead global IT operations, including end-user support, identity and access management, device management, and business continuity practices.
- Drive operational excellence across IT service delivery with clear KPIs, incident reduction, and measurable reliability improvements.
- Own vendor management and technology spend governance across IT and security systems.
- Establish operating models that improve transparency, accountability, and technical execution across business units.

ABOUT YOU

You are a senior security leader who thrives in fast-paced, high-growth SaaS environments and understands that security is both a risk management function and a commercial enabler. You bring deep expertise in information security and compliance within regulated healthcare or life sciences environments, along with operational experience leading IT.

You are data-driven, execution-focused, and comfortable owning large, cross-functional initiatives from strategy through implementation. You have successfully reduced incidents, improved operational maturity, strengthened audit readiness, and optimized infrastructure spend.

You are comfortable advising executive leadership and engaging directly with enterprise customers on security posture and compliance commitments.

You bring experience:
- Leading Information Security programs in SaaS environments
- Owning SOC 2 Type II and other regulatory certification programs end-to-end
- Supporting enterprise customer security reviews and RFP processes
- Managing globally distributed IT and/or infrastructure teams
- Partnering with Engineering on AWS-based infrastructure and DevOps practices
- Driving operational excellence initiatives that improve uptime, deployment velocity, and cost efficiency

REQUIREMENTS
- 10+ years of experience in Information Security and technology leadership roles
- Demonstrated ownership of security governance, audit programs, and regulatory compliance frameworks
- Experience operating in healthcare, health-tech, life sciences, or other regulated data environments
- Experience leading incident, change, and problem management programs
- Experience managing distributed teams and cross-functional technical organizations
- Proven ability to partner with Sales and executive leadership to support enterprise growth
- Relevant certifications such as CISSP, CISM, ISO Lead Implementer, or AWS certifications preferred

COMPENSATION

This role pays $190,000 to $225,000 per year, based on experience, in addition to stock options.

Anticipated role close date: 05/23/2026

- Full suite of health insurance options, in addition to generous paid time off

- Pre-planned company-wide wellness holidays

- Retirement options

- Health & charitable donation stipends

- Impactful Business Resource Groups

- Flexible work hours & the opportunity to work from anywhere

- The opportunity to work with leading biotech and life sciences companies in an innovative industry with a mission to improve healthcare around the globe