Head of Risk & Compliance (AI, Security, Privacy)

About us:

Protex AI is a VC-backed technology company building a privacy-preserving computer vision platform to enable proactive Health and Safety (EHS) workflows. We leverage the domain knowledge of EHS teams to help our computer vision system understand the concept of danger, preventing accidents before they occur. Every worker has the right to go home safe and healthy every day and every employer has the responsibility to provide a safe work environment. Our mission at Protex AI is to ensure that this is the case in every facility around the world by empowering EHS teams to adopt proactive safety cultures and in doing so realise an injury-free workplace.

About the Role:
The Head of Risk & Compliance will be responsible for developing and overseeing our risk management, security, and compliance frameworks. This role will ensure that our AI-driven solutions meet the highest standards of security, privacy, and regulatory requirements. The ideal candidate will have deep expertise in AI compliance, cybersecurity, and data privacy, as well as experience in working with enterprise clients and regulatory bodies.

What You'll Do:

• Develop and implement a comprehensive risk and compliance strategy for AI, security, and privacy.

• Establish and maintain governance frameworks to ensure compliance with global regulations (e.g., GDPR, CCPA, ISO 27001, NIST, SOC 2, EU AI Act, etc.).

• Collaborate with engineering, product, and legal teams to embed privacy-by-design and security best practices into AI development.

• Lead audits, certifications, and regulatory compliance initiatives to ensure adherence to industry standards.

• Assess and mitigate risks associated with AI model deployment, data security, and third-party integrations.

• Develop internal policies and training programs to build a strong culture of risk awareness and compliance.

• Act as a key point of contact for regulatory agencies, enterprise clients, and security assessments.

• Monitor evolving AI regulations, cybersecurity threats, and industry best practices to ensure proactive compliance.

• Implement and oversee incident response plans, including data breach response and business continuity planning.

What You'll Need:

• 5+ years of experience in risk management, security, compliance, or related fields, with at least 3 years in AI governance, privacy, or cybersecurity.

• Demonstrated client-facing experience, including dealing directly with Security & Compliance queries, InfoSecs, RFIs, and occasional support for technical sales calls.

• Deep understanding of AI risks, privacy frameworks, and cybersecurity threats.

• Experience working with regulatory bodies and managing audits/certifications (e.g., ISO 27001, SOC 2, GDPR, NIST, etc.).

• Strong technical background with knowledge of cloud security, encryption, and AI model risk assessment.

• Excellent leadership and communication skills to collaborate cross-functionally and influence stakeholders.

• Ability to work in a fast-paced startup environment, balancing compliance with innovation.

• Relevant certifications (e.g., CISSP, CIPP, CISM, ISO 27001 Lead Auditor) are a plus.

Protex AI is an inclusive and equal opportunities employer. We are committed to creating an equitable workplace for everyone regardless of gender, civil status, family status, sexual orientation, religion, age, disability, education level, or race.