Skip to content
WHOOPWHOOPBoston, MA

Director, Information Security

Leads security engineering and operations team, managing detection/response, AI security posture, and regulatory compliance in a high-growth health tech environment. Requires 10+ years experience including 5+ years managing managers.

Salary not listed
On-site10+ YOESecurity Engineering

About the role

Responsibilities

  • Lead Information Security function, accountable for security engineering, day-to-day operations, and evolving operating model.
  • Translate regulatory, privacy, and risk requirements into auditable technical controls, partnering with Security Architecture.
  • Own security operations including detection, response, escalation, incident follow-up, and operational readiness; serve as Incident Commander.
  • Establish standard operating procedures, metrics, automation, and process improvements.
  • Own security posture for enterprise and internal AI technologies, including guardrails for access, data handling, and monitoring.
  • Manage security managers and senior contributors, set expectations, and partner on hiring and development.
  • Partner with GRC and Legal for audits and communicate risk posture to leadership.

Qualifications

  • 10+ years in information security, security engineering, or operations; 5+ years managing managers and senior contributors.
  • Experience hiring, developing, and holding high-performing teams accountable.
  • Proven leadership in high-impact security incidents.
  • Experience with managed security service providers.
  • Strong prioritization and execution in high-growth environments.
  • Experience scaling security programs with metrics and automation.
  • Familiarity with HIPAA, GDPR, PCI, and AI compliance.
  • Preferred: Healthcare/biometric data experience, high-growth tech background, CISSP/CISM.

Skills

Security EngineeringSecurity OperationsIncident ResponseSIEMAutomationHIPAAGDPRPCIAi SecurityCissp
GameChanger

Director, Information Security & Technology

GameChangerNew York, NY

Lead GameChanger's Information Security and IT Operations as Director. Own multi-year security strategy, lead multidisciplinary teams across product security, cloud/AI security, SecOps, GRC, and internal tech support. Partner with executive leadership and parent company DSG while building security culture. Requires 10+ years security experience including people management.

220k – 240k/yr
Remote10+ YOESecurity Engineering
Casca

Head of Security & Compliance

CascaSan Francisco, CA

Lead security and compliance for an AI-native banking startup. Build security tooling, manage a team of appsec engineers, own compliance (SOC 2, ISO 27001), and secure AI agent workflows.

200k – 255k/yr
On-site5+ YOESecurity Engineering
Harvey

Head of Security Engineering

HarveySan Francisco, CA +1

Lead and scale the security engineering organization, owning IAM strategy, security tooling, and foundational security platforms that enable rapid, secure product development.

285k – 350k/yr
Hybrid10+ YOESecurity Engineering
Fable Security

Head of IT & Information Security

Fable SecurityUnited States

Lead security, compliance, and IT functions including SOC 2, ISO 27001, privacy, risk management, and external industry presence. Requires 7+ years in security/compliance/IT with direct experience leading compliance programs.

160k – 225k/yr
Remote7+ YOESecurity Engineering
DuckDuckGo

Privacy Engineering Director

DuckDuckGoUnited States

Lead privacy engineering initiatives across private browsing, search, and agentic products. Own complex privacy projects from definition to delivery, evolve review processes, and grow privacy engineering talent.

244k – 244k/yr
Remote10+ YOESecurity Engineering