Director of Information Security

About Proscia

Pathology is at the center of medicine and is undergoing a profound transformation as the final frontier of digitization in healthcare. We started Proscia to accelerate pathology’s transition from microscope to images—and to use AI to change the way we think about cancer.

We can’t change medicine alone. That’s why we’re looking for curious thinkers, big dreamers, developers, evangelists, pathologists, and scientists— exceptional talent to help us harness the great power of AI for good and advance humankind.

At Proscia, we push the limits of medicine and technology, solving problems the world has never solved before. We build software used by thousands of scientists and pathologists working on the front lines of fighting big enemies like cancer for patients around the globe. To accelerate our vision, Proscia has raised over $100M in capital from world-class healthcare and technology investors.

About this Position

We’re hiring our first Director of Information Security, reporting to the VP of Technical Operations. You’ll architect and evolve the security and compliance foundation of our Concentriq platform—used in regulated environments around the world. This is a high-impact leadership role focused on building a modern, scalable, AI-augmented security program aligned with our mission and growth.

What You’ll Do

Working at a startup like Proscia means wearing many hats, but when you come to work you can expect to focus on the following:

• Own and lead the Proscia Information Security Program, with a focus on governance, risk, and compliance (GRC) across the Concentriq suite of applications and Proscia's business applications.
• Develop, improve, and implement security policies and procedures to strengthen Proscia’s security posture across regulated and non-regulated markets.
• Manage and evolve the tools and workflows for vulnerability management, reporting, and remediation governance.
• Guide the company’s regulatory roadmap—seeking new certifications and frameworks (e.g., ISO 27001, SOC 2, HITRUST) in response to customer and market demands.
• Partner with Engineering to implement developer-friendly security tools that reduce compliance burdens without slowing innovation.
• Oversee incident response preparation, processes, and execution—ensuring rapid, coordinated action and effective communication during events.
• Serve as a consultative security leader for Engineering, Product, and Customer teams—governing system designs, architecture, and implementation through a security-first lens.
• Enable other teams to answer security-related questions from customers, prospects, and partners.
• Stay ahead of industry and regulatory trends, informing company leadership of new or emerging cybersecurity requirements.
• Bring an AI-forward mindset to security—leveraging modern tools and practices to automate and scale security operations in line with Proscia’s broader AI strategy.

What We’re Seeking

We’re looking for people who are smart, nice, & get stuff done. Proscia is a high-growth company, and we want entrepreneurial doers that thrive in a challenging environment—ready to build the plane while flying it. Proscia’s next Director of Information Security will have:

• 7+ years of experience in information security, including direct experience leading or building GRC programs.
• Proven expertise in regulatory frameworks such as ISO 27001, SOC 2, GDPR, HIPAA, FedRAMP, TX-RAMP, StateRAMP or similar.
• Experience with FDA regulations is an asset.
• Direct experience working in environments governed by HIPAA and GDPR.
• Hands-on experience with vulnerability management tools, incident response, and security audits.
• Familiarity with DevSecOps principles and working closely with engineering organizations to embed security into software development lifecycles.
• Experience selecting, implementing, and managing security tooling (e.g., SIEM, endpoint, code scanning, etc.).
• Exceptional communication and influencing skills across technical and non-technical teams.
• A high degree of autonomy and ownership—comfortable leading cross-functional efforts and prioritizing in a dynamic environment.
• AI fluency: Familiarity with modern AI tools (e.g., ChatGPT, CodeQL, automated compliance tools), and curiosity about how AI can be applied to simplify and strengthen information security.
• Bonus: Experience with cloud-native environments (AWS preferred), SaaS platforms, and early-stage startups.

Beyond Just Work

As a company in healthcare, we want our people to be happy and healthy, in and out of the office. In addition to competitive pay, we ensure everyone on our team is supported with savings, schedule, and insurance options that promote long-term health and personal growth.

Our office environment is designed for creativity and agility: with walls as notepads and couches for collaboration. We’re located in the heart of Philadelphia, with views of the city so you can spend your time focusing on what matters most.

At Proscia, we don’t just accept differences—we celebrate them, we support them, and we thrive on them for the benefit of our employees, our products, and our community. Proscia is proud to be an equal opportunity workplace.