Back to jobsApply
OneStudyTeam

Better. Sooner. Together.

Director of Security

Security EngineerSecurity EngineerFull TimeRemoteTeam 201-500H1B No SponsorCompany SiteLinkedIn

Location

United States

Posted

89 days ago

Salary

Not specified

Bachelor Degree15 yrs expEnglishAWSAzureCloudSDLC

Job Description

• Lead and manage the GRC and Security Engineering teams, including strategy, objectives, staffing, coaching, and performance management. • Own governance, risk, and compliance programs. Maintain ISO 27001 and related controls. Drive audit readiness for HIPAA and other frameworks. Coordinate policy lifecycle management and control testing. • Run vendor assessment and qualification program. Oversee third party risk management, due diligence, contractual security requirements, and continuous monitoring. • Provide AI related security assessments and guidance. Establish acceptable use guardrails for AI, assess model and data risks, and advise on controls for AI enabled solutions. • Oversee security architecture for cloud environments and enterprise platforms. Partner with engineering on secure design for AWS, Azure, identity, network, and data protection. • Direct security engineering operations. Manage EDR and threat detection with CrowdStrike, SIEM operations, CSPM posture management, vulnerability management, and SOAR automation. • Lead incident response readiness and execution. Run tabletop exercises, coordinate investigations, and deliver root cause and lessons learned. • Own and manage security budgets, multiyear planning, vendor contracts, and cost optimization while meeting control objectives. • Report program status and risk posture to executives and the board. Define and track KPIs and KRIs. Communicate clearly with technical and non technical stakeholders. • Establish and enforce secure software development practices and SDLC controls with engineering leadership. • Maintain a current security roadmap and maturity plan aligned to business priorities. • Oversee metrics, dashboards, and reporting for program performance and risk reduction. • Coordinate with Legal, Privacy, and Compliance on regulatory obligations and customer security assessments. • Champion security awareness training and culture, sponsor targeted training for engineering and high risk roles. • Evaluate, select, and manage strategic security vendors and platforms, drive successful implementations and integrations. • Represent security in customer meetings and due diligence, provide credible technical and compliance answers.

Job Requirements

  • 15+ years of progressive experience in information security or related fields.
  • 10+ years of management experience leading security teams, including people leadership and program ownership.
  • Bachelor's degree in Computer Science, Engineering, Information Security, or related field.
  • Relevant certifications strongly preferred. Examples include CISSP and CISM.
  • Proven leadership of security programs at enterprise scale. Ability to set strategy, drive execution, and deliver measurable outcomes.
  • Demonstrated expertise in governance, risk, and compliance programs, including driving the implementation of ISO27001, SOC2, or HITRUST certification.
  • Experience with AI security risk management, data protection for AI use cases, and acceptable use guardrails for AI and large language models.
  • Strong background in secure software development, application security, and SDLC controls, including threat modeling and secure coding practices.
  • Hands-on knowledge of cloud security for AWS and Azure, identity and access management, network security, data protection, and key management.

Benefits

  • We value diversity and believe the unique contributions each of us brings drives our success. We do not discriminate on the basis of race, sex, religion, color, national origin, gender identity, age, marital status, veteran status, or disability status.
  • As a condition of employment, you will abide by all organizational security and privacy policies.
  • This organization participates in E-Verify (E-Verify's Right to Work guidance can be found here).

Related Categories

Security Engineer

Related Job Pages

Remote Full-time Jobs (US)More US Remote Jobs

More Security Engineer Jobs

Creative Content Marketing Manager

Upwind Security

Cloud Security Happens at Runtime.

Security Engineer89 days ago
Full TimeRemoteTeam 51-200H1B No Sponsor
Company SiteLinkedIn

Creative Content Marketing Manager shaping brand presence through innovative content

View details: Creative Content Marketing Manager
California
Apply

Data Center Security Manager

RYZ Labs

RYZ Labs is a startup studio built in 2021 by three lifelong entrepreneurs. The founders of RYZ have worked at some of the world's largest tech companies and some of the most iconic consumer brands. They have lived and worked in Argentina for many years and have decades of experience in Latam. Passion for the early phases of company creation Attracting the brightest talents to build industry-defining companies in a post-pandemic world Remote and distributed teams throughout the US and Latam Use of cutting-edge technologies in cloud computing Aim to provide diverse product solutions for different industries Plans to build a large number of startups in the upcoming years Our Values and What to Expect Customer First Mentality - every decision we make should be made through the lens of the customer. Bias for Action - urgency is critical, expect that the timeline to get something done is accelerated. Ownership - step up if you see an opportunity to help, even if not your core responsibility. Humility and Respect - be willing to learn, be vulnerable, and treat everyone who interacts with RYZ with respect. Frugality - being frugal and cost-conscious helps us do more with less. Deliver Impact - get things done most efficiently. Raise our Standards - always be looking to improve our processes, our team, and our expectations. The status quo is not good enough and never should be.

Security Engineer89 days ago
Full TimeRemoteTeam 51-200

RYZ Labs is hiring for a Data Center Security Manager to develop and enforce physical security policies, protect facilities from threats, and lead access control, surveillance, and incident response. On-call rotation required. Develop and maintain security policies, SOPs, and inc...

Physical SecurityAccess ControlCCTVIntrusion DetectionIncident ResponseRisk AssessmentISO 27001SOC 2NISTVendor ManagementPACSVMSCompliance
View details: Data Center Security Manager
United States + 24 moreAll locations: United States, Brazil, Colombia, Argentina, Chile, Venezuela, Bolivarian Republic Of, Bolivia, Plurinational State Of, Ecuador, French Guiana, Guyana, Paraguay, Peru, Suriname, Uruguay, Mexico, Costa Rica, El Salvador, Guatemala, Honduras, Nicaragua, Panama, Dominican Republic, Puerto Rico
Apply

VP, Security

CivicPlus

Powering and Empowering Government

Security Engineer89 days ago
Full TimeRemoteTeam 501-1,000Since 2001H1B Sponsor
Company SiteLinkedIn

Vice President of Security leading cybersecurity and compliance strategy for SaaS products.

CloudCyber Security
View details: VP, Security
United States
Apply

Senior Security Engineer – SIEM, SPLUNK

Coalfire

Cyber solutions that move you forward, faster.

Security Engineer89 days ago
Full TimeRemoteTeam 1,001-5,000Since 2001H1B Sponsor
Company SiteLinkedIn

Senior Security Engineer (SIEM engineer) providing operational support for client's cybersecurity

CloudITSMLinuxPythonServiceNow
View details: Senior Security Engineer – SIEM, SPLUNK
United States
$78K - $135K / year
Apply