Himalayas logo
FullscriptFU

Technical Program Manager, Security

Fullscript is a healthcare platform founded in 2011 that enables practitioners to prescribe and manage professional-grade supplements, offering tools for personalized treatment plans and patient adherence. It serves healthcare professionals by providing a comprehensive solution for integrative medicine.

Fullscript

Employee count: 501-1000

Salary: 145k-185k USD

Canada only

Stay safe on Himalayas

Never send money to companies. Jobs on Himalayas will never require payment from applicants.

About Fullscript

We’re an industry-leading health technology company on a mission to help people get better. We started in 2011 with one simple idea. Make it easier for practitioners to access the products they trust so they can deliver better care.
That simple idea grew into a platform that powers every part of care. Today, more than 125,000 practitioners use Fullscript for clinical insights, lab interpretations, patient analytics, education, and access to high-quality supplements. Over 10 million patients rely on Fullscript to stay connected to their care plans and follow through on treatment.
We build tools that make care smarter and more human. Tools that save time, simplify decisions, and help practitioners stay closely connected to the people they care for. When everything they need is in one place, they can focus on what matters most: helping people get better.

This is your invitation.

Bring your ideas, your grit, and your care for people.
Join us and shape the future of care.
We’re seeking a Technical Program Manager to lead our most critical security programs, operating at the intersection of security engineering, compliance, and cross-functional delivery. This is a high-impact individual contributor role responsible for defining and running the operating model for how security programs are planned, executed, and scaled at Fullscript.
This role partners closely with Security Engineering, Infrastructure, Product Engineering, Compliance, and Legal. You’ll bring clarity to complex security work, align teams around shared outcomes, and ensure we deliver on our security commitments in a way that scales with the business.

What you'll do

  • Own the security program portfolio
  • Own the end-to-end security program roadmap, balancing short-term risk reduction with long-term security maturity.
  • Translate security strategy, risk posture, and compliance requirements into clear, prioritized, and executable programs.
  • Establish durable planning rhythms, milestones, and success metrics for security initiatives.
  • Lead Security Engineering Programs
  • Own the Vulnerability Management program, including prioritization frameworks, remediation tracking, and executive-level reporting.
  • Coordinate internal and external Penetration Tests, from scoping and scheduling through remediation and closure.
  • Partner with engineering and infrastructure teams to ensure security findings are addressed efficiently and sustainably.
  • Drive Compliance & Audit Readiness
  • Serve as the primary program-level owner for SOC 2 execution and readiness, coordinating timelines, evidence collection, and cross-team accountability.
  • Partner with Compliance and Security to reduce audit friction through better processes, documentation, and tooling.
  • Identify systemic audit gaps and lead programs to close them long-term, not just for the next audit cycle.
  • Establish Scalable Operating Models
  • Design and evolve the operating model for security programs, ensuring work scales as Fullscript grows.
  • Identify recurring pain points and implement structural improvements to reduce manual coordination and rework.
  • Ensure security programs are predictable, measurable, and transparent.
  • Communicate with Clarity and Trust
  • Communicate program status, risks, and tradeoffs clearly to senior leaders and stakeholders.
  • Create and maintain high-quality program documentation, including plans, timelines, and decision records.
  • Build trust through proactive communication, follow-through, and shared accountability.

What you bring to the table

  • Deep experience leading complex, cross-functional technical programs in security, infrastructure, or highly regulated domains.
  • Proven ability to operate at both strategic and execution levels, without losing sight of delivery.
  • Strong technical fluency that enables effective partnership with security and engineering teams.
  • Comfort navigating ambiguity and making sound judgment calls in risk-based environments.
  • Exceptional communication skills and the ability to influence without direct authority.
  • A mindset rooted in ownership, transparency, and continuous improvement.

Bonus points if you have

  • Direct experience supporting SOC 2, or similar security compliance frameworks.
  • Familiarity with vulnerability management tools, penetration testing workflows, or security incident processes.
  • Experience working in cloud-based environments and modern CI/CD pipelines.
  • Background in health-tech, fintech, or other highly regulated industries.
  • Experience scaling security programs in a growing organization.

How this role shows up at Fullscript

At Fullscript, senior leaders are expected to own outcomes, act with care, and build systems that last. In this role, success means:
∙ Security programs are predictable, trusted, and aligned with business priorities
∙ Audit cycles become smoother and less disruptive over time
∙ Engineering teams experience security as a partner, not a blocker
∙ Leaders have confidence in our security posture because of clear data and delivery

Compensation range

The salary range for this role is between $145,000 CAD and $185,000 CAD. Fullscript shares salary ranges to support transparency and help candidates make informed decisions. The range shown reflects base salary only and does not include stock options, wellness stipends, or other benefits that are part of Fullscript’s total rewards package.
Final compensation depends on experience, skills, and location. We review pay regularly to stay aligned with market data and internal equity. Benefits and total rewards may vary by region.

Why Fullscript

Great work happens when people feel supported, trusted, and inspired. At Fullscript, we stay curious and keep finding smarter ways to make care better. We grow together, take on new challenges, and focus on impact. We put people first, work as a team, and leave egos at the door.

What to Know Before You Apply

We’re grateful for the interest in joining Fullscript. To make sure your application reaches our hiring team, please apply directly through our careers page. We’re not able to respond to individual messages about open roles on email or social channels.
Fullscript is an equal opportunity employer committed to creating an inclusive workplace. Accommodations are available upon request at accommodations@fullscript.com.
All offers are contingent on successful background checks conducted in compliance with federal, state, and provincial laws.
We use AI tools to support parts of the hiring process, including screening and reviewing responses. Final hiring decisions are always made by people and follow all applicable privacy and employment laws in Canada and the U.S.

Learn More

@fullscriptHQ on instagram

About the job

Apply before

Posted on

Job type

Full Time

Experience level

Mid-level
Senior

Salary

Salary: 145k-185k USD

Location requirements

Canada

Hiring timezones

Canada +/- 0 hours

Job categories

& SecurityTechnical Program ManagerSenior Technical Program ManagerCybersecurity Program Manager

Skills

Security EngineeringComplianceVulnerability ManagementPenetration TestingSOCCI CDRisk ManagementSecurity AuditingIncident ResponseInfrastructureProgram ManagementEvidenceKeepMake

About Fullscript

Learn more about Fullscript and their company culture.

View company profile

Fullscript's journey began in 2011, born from a desire to simplify and improve how healthcare practitioners provide, and patients receive, nutritional supplements. Dr. Alanna Dyment, a naturopathic doctor, found herself wrestling with the complexities and costs of managing a physical supplement dispensary in her own clinic. She envisioned a more streamlined approach, one that would allow her to dedicate more time to patient care rather than inventory management. This vision was shared with her husband, Brad Dyment, and his partner, Kyle Braatz. Recognizing the potential to revolutionize this aspect of healthcare, they teamed up with Chris Wise, and Fullscript was officially launched.

The company started as an online platform for dispensing professional-grade nutraceuticals and supplements, allowing practitioners to prescribe and manage supplements for their patients digitally. This innovative approach quickly gained traction. A significant milestone in Fullscript's evolution was the 2018 merger with Natural Partners, an Arizona-based company with a strong background in supplement supply chain and merchandising since 1995. This merger, creating Natural Partners Fullscript (NPFS), combined Fullscript's software engineering prowess with Natural Partners' extensive distribution network and product catalog. The goal was to create a more efficient, effective, and innovative solution for the integrative healthcare market. Later, the company rebranded to simply Fullscript. Over the years, Fullscript continued to expand its offerings and reach. The platform evolved to include features like personalized treatment planning, wellness protocols, data insights, and patient adherence tools. Fullscript also focused on strategic acquisitions, such as Emerson Ecologics in 2022 and Rupa Health in 2024, further solidifying its market position and expanding its capabilities to include lab ordering and management. These moves have propelled Fullscript to become a leading healthcare platform, supporting over 100,000 practitioners and 10 million patients across North America, with a mission to power whole-person care.

Employee benefits

Learn about the employee benefits and perks provided at Fullscript.

View benefits

Work From Home

Supports remote work.

Mental Health Care

Mental health benefits.

Life Insurance

Life insurance coverage.

Dental Insurance

Dental insurance coverage.

View Fullscript's employee benefits
Claim this profileFullscript logoFU

Fullscript

Company size

501-1000 employees

Founded in

2011

Chief executive officer

Kyle Braatz

Markets

Healthcare TechnologyDigital HealthNutritional SupplementsTelehealthHealth and WellnessPractice Management SoftwareIntegrative MedicineSupply Chain ManagementHealth Data AnalyticsEcommerce

Employees live in

Canada
View company profile

Similar remote jobs

Here are other jobs you might want to apply for.

View all remote jobs

17 remote jobs at Fullscript

Explore the variety of open remote roles at Fullscript, offering flexible work options across multiple disciplines and skill levels.

View all jobs at Fullscript
Top remote companies

Remote companies like Fullscript

Find your next opportunity by exploring profiles of companies that are similar to Fullscript. Compare culture, benefits, and job openings on Himalayas.

View all companies

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
Save
Apply now
Fullscript hiring Technical Program Manager, Security • Remote (Work from Home) | Himalayas