Director of IT, Information Security & Data Privacy

About The Position

Requirements

• 10+ years of progressive IT and information security leadership experience, including 5 + years with director and/or senior-level responsibility
• Proven experience leading IT and security functions within a fast-paced, high-growth SaaS or cloud-native company
• Strong hands-on technical background across cloud infrastructure, networking, identity management, endpoint management, and security operations
• Demonstrated success building, mentoring, and leading high-performing technical teams
• Deep understanding of cybersecurity frameworks, risk management, and security best practices
• Demonstrated success leading the achievement, maintenance, and continuous improvement of ISO 27001, SOC 2, and related security/compliance programs
• Experience implementing and managing modern security tooling and processes in cloud environments
• Strong project management, communication, organizational, and cross-functional collaboration skills

Nice To Haves

• Experience supporting remote or hybrid work environments
• Familiarity with modern SaaS ecosystems including Microsoft 365, Google Workspace, Okta, JAMF, Intune, AWS/Azure, and cloud security platforms
• Security certifications such as CISSP, CISM, or similar are a plus
• Experience with M&A integration, scaling operations, or rapid organizational growth preferred

Responsibilities

• Lead the company’s IT strategy, operations, and roadmap across infrastructure, endpoint management, collaboration tools, and enterprise applications
• Manage and mentor a high-performing IT and security team, fostering accountability, growth, and operational excellence
• Oversee help desk operations and end-user support to ensure a high-quality employee experience
• Drive scalability, automation, and operational maturity across IT systems and processes
• Manage vendor relationships, software licensing, hardware procurement, and IT budgets
• Ensure business continuity, disaster recovery, and operational resilience plans are maintained and tested
• Develop, implement, and continuously improve the organization’s cybersecurity strategy and security posture
• Lead security operations including identity and access management, endpoint security, vulnerability management, threat detection, incident response, and security monitoring
• Partner with engineering and product teams to strengthen cloud and application security practices
• Maintain and improve security frameworks, policies, standards, and controls aligned with industry best practices
• Lead security awareness and training initiatives across the organization
• Manage vendor and third-party security assessments, audits, and customer security questionnaires
• Own and evolve the company’s data privacy and governance programs
• Ensure compliance with applicable regulations and frameworks including SOC 2, GDPR, CCPA, and other evolving privacy/security standards
• Partner with legal, HR, engineering, and business stakeholders to operationalize privacy and compliance requirements
• Support customer, partner, and enterprise security assessment and due diligence efforts
• Serve as a trusted advisor to executive leadership on IT, cybersecurity, risk, and privacy matters
• Influential leader who builds trust and collaborates effectively across technical and business functions
• Assess emerging technologies and risks to support business growth and innovation
• Build scalable processes and controls appropriate for a rapidly growing SaaS organization
• Establish KPIs, metrics, and reporting for IT and security operations

Benefits

• Competitive compensation package
• Bonus eligible
• PTO policy includes company holidays, sick time, vacation time, and floating holidays
• Company pays a portion of individual health care premium
• Option to participate in a company-sponsored 401(k)
• Training and education
• Professional development; all employees have access to a third party professional coach
• Tuition reimbursement program