Head of Security

Summary

We are seeking an experienced and dynamic Head of Security to lead our organization's cross-functional initiatives. The ideal candidate will have a strong technical background, experience in high-growth startup environments, and a proven track record in developing a right-sized security program.

Responsibilities

• Security Strategy & Culture: Develop and oversee the implementation of company-wide security policies, procedures, and best practices.  Promote a strong security culture and awareness across the organization.
• Team Leadership: Recruit, lead and mentor a team of security professionals, fostering a culture of continuous improvement, career growth, and innovation.
• Incident Response: Oversee incident response planning and execution, regular risk assessments, vulnerability testing, and threat analysis to identify and mitigate risks.
• Compliance & Risk Management: Ensure compliance with relevant industry standards and regulations including financial regulations (SOC2).  Oversee audit processes to maintain regulatory standards and drive business continuity priorities.
• Product & Application Security: Ensure the security of our products and applications by embedding best practices throughout the software development lifecycle and collaborating closely with engineering teams. Engage with customers and partners to address security concerns and requirements.
• Corporate Security - Collaborates closely with IT and other stakeholders to define and drive a right-sized approach to endpoint and SaaS security.
• Stakeholder Communication: Collaborate with executive leadership to align security strategies with business objectives.
• Budget & Resource Management: Manage the organization’s security budget, ensuring efficient allocation of resources to meet security needs while optimizing costs.

Qualifications

• 10+ years of experience in information security, with at least 5 years in senior leadership roles.
• Experience managing a high-performing security team through mentorship, clear goal setting, and professional development opportunities.
• Proven experience scaling a security program in a high-growth, pre-IPO environment where agility and rapid scaling are crucial.
• Bachelor's degree in Computer Science, Information Security, or related field; advanced degree preferred.
• Deep knowledge of product security, application security, and cloud security.
• Strong technical background with hands-on experience in various aspects of cybersecurity.
• Exposure to Governance, Risk, and Compliance (GRC) frameworks and implementations.
• Excellent communication skills with the ability to interact effectively with technical and non-technical stakeholders, including customers.

Required Skills

• In-depth knowledge of information security principles, risk management, and compliance standards.
• Strong leadership and team management abilities.
• Excellent problem-solving and analytical skills.
• Ability to translate complex technical concepts for non-technical audiences.
• Experience in developing and managing security budgets.
• Proficiency in security tools and technologies.

Preferred Experience

• Previous experience as a senior security leader in a fast-paced technology company.
• Track record of successfully implementing security programs in cloud-based environments.
• Experience in presenting to and advising executives and board members.
• Familiarity with modern corporate security controls.

The ideal candidate will be a strategic thinker with a hands-on approach, capable of balancing technical expertise with business acumen. They should be comfortable operating in a dynamic environment and have a passion for building and maintaining a robust security posture in a rapidly evolving threat landscape.