Director of Security and Compliance

3 days ago

Apply Now

Receive Emails with Similar Jobs

Backlight

WebsiteLinkedInAll Job Openings

201 - 500 employees

📱 Media

☁️ SaaS

Description

• Develop and execute security strategies to protect company assets, data, and infrastructure while aligning with business objectives. • Oversee compliance with SOC 2 and other regulatory frameworks, managing end-to-end audit processes. • Mentor and grow the security and compliance team, including direct oversight of the Compliance Analyst, to scale security operations. • Lead the administration and optimization of security systems, such as Crowdstrike (endpoint security), Okta (identity and access management), Orca (cloud security), and application security tools (SAST, SCA, DAST). • Conduct risk assessments, vulnerability testing, and penetration testing to identify and mitigate security risks. • Serve as the primary contact for SOC 2 and other industry-standard audits, ensuring readiness and managing audit processes. • Develop and deliver security training programs to promote awareness of security best practices and compliance. • Partner with IT, product, and engineering teams to embed security controls throughout the software development lifecycle.

Requirements

• Relevant security certifications (e.g., CISSP, CISM). • Bachelor’s degree in computer science, information security, or a related field. • 8+ years of experience in security and compliance roles, including 3+ years in a leadership capacity within a technology environment. • Expertise in managing SOC 2 compliance and corporate security systems, including tools like Crowdstrike, Orca, and Snyk. • Strong understanding of security frameworks and regulatory requirements (e.g., SOC 2, GDPR, ISO 27001). • Exceptional project management and audit oversight skills. • Excellent communication and leadership abilities, with a collaborative and proactive approach.