Leadership Solutions

Vice President, Chief Information Security Officer (CISO)


Rite Aid




The Rite Aid Information Security Program is designed to protect information and critical resources from a wide range of threats in order to ensure business continuity, minimize business risk, and maximize return on investments and business opportunities. The objective in the development and implementation of this Information Security Program is to create effective administrative, technical, and physical safeguards in order to protect Rite Aid and its subsidiaries' data. The Chief Information Security Officer (CISO) works collaboratively with the business units to assure compliance with government, healthcare, business, and other regulatory policies and laws related to information security and privacy. The CISO assesses information systems, oversees and deploys security awareness programs, assists in responding to patient security inquiries, develops the security and privacy components that support overall Rite Aid business strategy, leads board-level presentations on cybersecurity, and develops strategies to reduce risk and allow for business continuity. The primary purpose of the Vice President / CISO position is to set and maintain the overall corporate strategy concerning cyber security within the Rite Aid Information Security Program. This includes leading the development of information security strategies, technology best practices, vulnerability management, access controls, vendor risk management, cloud security, security architecture and Disaster Recovery / Contingency Planning. The position will manage the development and delivery of IT security standards, architecture and systems to ensure data and information security across the company.


Experience / Requirements Provide leadership, vision and direction for Information Security initiatives that support and protect the company's business objectives and requirements. Responsible for identifying internal and external information security risks; performing risk assessments and cost benefit analysis to determine appropriate level of security controls for monitoring IT systems and other document processing systems. Develop and implement a comprehensive plan, program and architecture for information systems security. Develop and maintain the Information Security Incident Response Playbook on an annual basis. Perform an annual TABLE TOP exercises with senior management of the corporation. Responsible for setting strategy to integrate all subsidiaries within the Incident Response Playbook. See more online.

How to Apply:

Apply online.