Director of Information Security
About The Position
As the Director of Information Security, you will build and lead a comprehensive security and compliance program that protects the company’s information, systems, and customer data This role will serve as both the strategic leader and operational owner of GridUnity’s security posture, responsible for governance, risk, compliance, and customer assurance. You will evolve our security program from audit readiness to security maturity—building systems, processes, and culture that embed security into how we operate. This role ensures the organization is audit-ready, resilient to risk, and trusted by customers and partners, while enabling the business to move quickly and innovate safely. This role reports to the VP of Operations.
Requirements
- 8+ years of experience in information security, risk, or compliance
- 3+ years leading security programs and external audits (SOC 2, NIST, ISO, or similar)
- Strong working knowledge of cloud security, risk management frameworks, IAM, and secure SDLC practices
- Demonstrated experience serving as primary audit owner and interfacing with auditors
- Excellent written and verbal communication skills, including executive-level reporting
- Bachelor’s degree in Information Security, Computer Science, Cybersecurity, or related field (or equivalent professional experience)
Nice To Haves
- Experience in a startup, scaling SaaS company, or similarly dynamic environment.
- Relevant certifications (e.g., CISSP, CISM, CRISC, CISA)
- Master’s degree in a related field
Responsibilities
- Develop and lead the company-wide information security strategy aligned to business goals.
- Establish and manage the risk management program, including regular reporting to executive leadership.
- Own SOC 2 Type 2, NIST 800-171, and other required audits end-to-end.
- Serve as the primary point of contact for auditors and ensure continuous audit readiness.
- Maintain and evolve security policies, standards, and controls, including AI/LLM governance.
- Lead incident response planning and periodic tabletop exercises.
- Partner with Engineering to ensure secure architecture, SDLC, and cloud security practices.
- Oversee vulnerability management, access controls, and vendor risk management.
- Lead customer security assurance efforts, including questionnaires and enterprise security discussions.
Benefits
- Competitive compensation packages that recognize your expertise and contributions
- Remote-first culture that provides flexibility and balance
- Professional development opportunities, including training, mentorship, and career pathing
- Comprehensive health, dental, and vision insurance starting day one
- Short- and long-term disability and basic life insurance at no cost to you
- 401(k) plan with a 4% match to help secure your future
- Flexible PTO and a supportive work culture that values balance
- Mission-driven work with the opportunity to make a significant impact in the energy sector
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Director
