Head of IT & Information Security

Responsibilities

Compliance & Privacy

• Own compliance program, including SOC 2 and ISO 27001, and the ISMS that supports them
• Assist with operational privacy processes in support of GDPR and adherence to privacy laws across all US states and international requirements
• Assist the CISO with privacy program implementation

Risk Management

• Lead the third-party risk management program
• Lead AI risk management and governance

Security & IT Leadership

• Drive focus areas: identity and access management, product security, and internal IT operations

Industry Presence & Thought Leadership

• Contribute to security research and thought leadership
• Drive and attend industry events in partnership with the go-to-market team
• Submit to and speak at conferences

Requirements

• 7+ years across security, compliance, and IT, including direct experience leading ISO 27001 and SOC 2 programs
• Working knowledge of GDPR and US state and international privacy requirements
• Experience across identity, product security, risk management, and IT operations
• Comfortable representing the company externally — at events, in research, and on stage
• Clear communicator who can translate technical and regulatory requirements for any audience

Nice to Have

• CISSP, CISM, CIPP/E, ISO 27001 Lead Implementer/Auditor, or equivalent certifications
• Established presence in the security community: publications, talks, or research contributions

Compensation & Benefits

• Competitive base salary + equity
• Equity in a venture-backed, high-growth company
• Comprehensive benefits: health, dental, vision, 401(k)
• Flexible PTO
• Estimated salary range: $160,000 - $225,000/year
• Total compensation may include stock options, sign-on bonus, and other potential future incentives