Director of Cybersecurity (PTX51826)

About The Position

Requirements

• Must live in Dallas area and able to commute to Plano, TX
• Must be a USA citizen or have proper documentation for work in USA - unable to sponsor
• 10+ years of progressive experience in cybersecurity, with at least 3 to 5 years leading security programs at the manager, director, or principal level.
• Demonstrated success building or significantly maturing a security program in a cloud-native SaaS environment, including framework selection and roadmap execution.
• Hands-on track record taking a company through SOC 2, PCI DSS, ISO 27001, or comparable audit and certification cycles.
• Experience operating as a player-coach: directly executing technical security work while also setting strategy and influencing leadership.
• Background in a services-intensive, operationally complex, or multi-location business is highly valued; property management, real estate services, fintech, or adjacent verticals are a plus.
• Strong hands-on fluency with cloud security.
• Deep working knowledge of identity and access management patterns, including SSO, SAML/OIDC, MFA, PAM, and zero-trust architectures.
• Practical experience leading incident response, including detection engineering, SIEM and SOAR tuning, threat hunting, and forensics.
• Familiarity with application security, secure SDLC, vulnerability management, and DevSecOps tooling.
• Working knowledge of common control frameworks (NIST CSF, ISO 27001, SOC 2 TSC, CIS Controls) and the practical tradeoffs between them.
• Awareness of emerging AI and ML security considerations, including data protection, model risk, and the security of agentic systems in production.
• Outstanding executive communication skills with the ability to translate risk and technical concepts into clear business narratives for the C-suite and Board.
• Collaborative, low-ego operator who builds trust with engineering, operations, and business teams and leads through influence in a matrixed environment.
• Calm, decisive presence in incidents and audits, with sound judgment under pressure and a bias toward action.
• Entrepreneurial mindset: comfortable operating in a high-growth, private-equity-backed environment where speed, resourcefulness, and ROI discipline matter.

Nice To Haves

• CISSP, CISM, CISA, or CCSP certifications.
• Cloud security certifications such as AWS Security Specialty, Azure Security Engineer Associate, or Google Professional Cloud Security Engineer.

Responsibilities

• Assess RealManage's current security posture, identify gaps, and recommend the right common framework direction (NIST CSF, ISO 27001, SOC 2, CIS Controls, or a blended approach) to align our program against.
• Build a multi-year cybersecurity roadmap with clearly defined milestones, control objectives, and measurable outcomes.
• Translate framework requirements into prioritized, funded workstreams with executive sponsorship and clear business alignment.
• Establish security policies, standards, and governance structures that scale with RealManage's growth and M&A activity.
• Present security strategy, risk posture, and program progress to the executive leadership team and the Board.
• Own RealManage's compliance program, with primary focus on PCI DSS for resident and board payment data and SOC 2 / SOX-style control attestations.
• Lead audit readiness, evidence collection, and remediation across in-scope systems, applications, and third-party processors.
• Build and maintain a risk register, vendor risk management program, and exception process that gives leadership clear visibility into residual risk.
• Establish data protection standards aligned with applicable U.S. state privacy laws and HOA-specific data handling and fiduciary obligations.
• Partner with Legal, Finance, and Internal Audit to ensure security controls integrate cleanly with enterprise risk and compliance functions.
• Drive secure-by-default patterns into the cloud platform in partnership with the VP of Cloud Engineering and platform teams.
• Implement and tune cloud security posture management, vulnerability management, and continuous compliance monitoring.
• Embed security into CI/CD pipelines and SDLC practices without slowing engineering delivery velocity.
• Address emerging risks tied to AI and intelligent automation, including model and data protection, prompt injection, and securing AI agents and service identities in production.
• Build and operate the incident response program, including playbooks, tabletop exercises, on-call rotations, and post-incident review processes.
• Stand up detection and response capabilities, whether fully in-house, through MSSP partnership, or a hybrid model, with clear SLAs and operating metrics.
• Lead threat hunting, log analysis, and continuous monitoring across cloud, endpoint, and SaaS surfaces.
• Serve as the primary point of escalation for security events, coordinating cross-functional response and external notifications when required.
• Lead the enterprise IAM strategy, including SSO, MFA, privileged access management, and zero-trust principles.
• Roll out and continuously improve identity hygiene across employees, contractors, and integrated partners.
• Establish re.ole-based access controls, least-privilege standards, and joiner/mover/leaver processes that satisfy both audit and operational requirements.
• Secure machine identities, service accounts, and AI agent credentials as the platform and its automation footprint scale.
• Start as a hands-on individual contributor, then build, attract, and retain a high-caliber security team as the program and roadmap grow.
• Champion security awareness across the organization, including phishing simulations, role-based training, and clear security guidance for engineering and operations teams.
• Foster a culture where security is a shared responsibility rather than a gate, partnering with engineering, product, and operations teams to make secure choices the easy choices.
• Manage security tooling budgets, vendor relationships, and ROI for the cybersecurity portfolio.

Benefits

• Medical Insurance
• Dental Insurance
• Vision Insurance
• Life and Disability Insurance
• HSA (Required High-Deductible Medical Plan to be eligible)
• FSA
• Education Reimbursement
• 401K matching
• Employee Assistance Program (EAP)
• 11 paid Holidays