🚀 Director of Security - SaaS
đź“Ť Location: United States (Remote)
🧳 Full-Time Role
Our client is a rapidly growing SaaS company that is transforming the way data teams work together. Their platform provides a modern data collaboration and governance workspace that enables data-driven organizations to catalog, discover, and manage their data assets effectively. As they continue to scale, we are seeking a highly experienced and motivated Director of Security to join their team and lead their security efforts.
đź“Ś Position Overview:
As the Director of Security, you will be responsible for overseeing all aspects of the company’s security posture. This role involves leading the development and implementation of security strategies, managing risks, and ensuring that the company’s products and services meet the highest standards of security and compliance. You will work closely with cross-functional teams to embed security into every aspect of our operations and product development.
đź“Ś Key Responsibilities:
- Develop and execute a comprehensive security strategy that aligns with the company’s business goals and growth objectives.
- Lead and mentor the security team, fostering a culture of security awareness and best practices across the organization.
- Serve as the subject matter expert on security matters, advising the executive team and other stakeholders.
- Identify, assess, and mitigate security risks to the organization’s data, systems, and infrastructure.
- Ensure compliance with relevant security standards, regulations, and certifications (e.g., SOC 2, ISO 27001, GDPR).
- Conduct regular security audits, assessments, and penetration testing to evaluate the effectiveness of security controls.
- Oversee the day-to-day security operations, including incident response, threat detection, and vulnerability management.
- Implement and maintain security monitoring, logging, and alerting systems to proactively identify and respond to potential threats.
- Manage and optimize security tools and technologies to protect against evolving threats.
- Collaborate with product and engineering teams to ensure security is integrated into the development lifecycle.
- Develop and enforce secure coding practices and conduct security reviews of new products and features.
- Manage the security of the company’s cloud infrastructure, ensuring robust protections against unauthorized access and data breaches.
- Lead the response to security incidents, coordinating with internal teams and external partners to minimize impact and ensure timely resolution.
- Develop and maintain incident response plans, ensuring readiness to handle security events effectively.
- Develop and deliver security awareness programs to educate employees on security best practices and policies.
- Foster a security-first mindset across the organization, promoting a proactive approach to security.
- Manage relationships with security vendors and partners, evaluating new tools and services to enhance the company’s security capabilities.
- Ensure third-party vendors adhere to the company’s security requirements and manage the risks associated with third-party integrations.
đź“Ś Qualifications:
- Bachelor’s degree in Computer Science, Information Security, or a related field; advanced degree or relevant certifications (e.g., CISSP, CISM, CISA) preferred.
- 8+ years of experience in security leadership roles, with a proven track record of building and managing security programs in a SaaS or technology company.
- In-depth knowledge of security frameworks, standards, and regulations (e.g., NIST, ISO, GDPR, CCPA).
- Experience with cloud security, particularly in environments like AWS, Azure, or GCP.
- Strong understanding of secure software development practices and experience working with engineering teams.
- Proven experience in incident response, threat management, and security operations.
- Excellent communication and leadership skills, with the ability to influence and collaborate across all levels of the organization.
- Ability to work independently and remotely, with a strong sense of accountability and ownership.