Director, Security Operations & Information Security

Figma•San Francisco, NY

2d•$250,000 - $338,000•Remote

About The Position

Figma is growing our team of passionate creatives and builders on a mission to make design accessible to all. Figma’s platform helps teams bring ideas to life—whether you're brainstorming, creating a prototype, translating designs into code, or iterating with AI. From idea to product, Figma empowers teams to streamline workflows, move faster, and work together in real time from anywhere in the world. If you're excited to shape the future of design and collaboration, join us! The role of Director, Security Operations & Information Security is a new and critical addition to our organization. This leader will be responsible for driving our enterprise-wide security strategy and ensuring operational excellence across our systems, from GTM and Finance platforms to IT, Compliance, and Risk. Our broader Information Security function is expanding its scope to align more deeply with business priorities. This includes building scalable frameworks for threat management, compliance, and governance, and ensuring that every team — from Sales to Engineering — has the tools and guidance needed to operate securely and confidently. We’re looking for a proven security leader who has built and scaled SecOps and InfoSec programs, partnered effectively with senior leaders across the business, and can ensure that we continue to deliver resilience, trust, and protection for Figma and our customers. This is a full time role that can be held from one of our US hubs or remotely in the United States.

Requirements

10+ years of experience in information security, with 5+ years in a senior leadership role overseeing security operations or infosec
Strong background in building and scaling security programs in SaaS/cloud-native environments
Deep knowledge of modern threat landscapes, detection and response strategies, and vulnerability management practices
Understanding of compliance and regulatory frameworks relevant to enterprise SaaS (SOC 2, ISO, FedRAMP, etc.)
Experience engaging with auditors, regulators, and customer security teams

Responsibilities

Lead and scale the Information Security and Enterprise Security functions, including Security Operations, Third-Party Risk Management, Incident Response, Threat Detection, Vulnerability Management, and GRC
Define and drive the security strategy and roadmap, balancing innovation and risk in close partnership with Engineering and Product leadership
Collaborate cross-functionally to ensure comprehensive security governance across the organization
Develop and uphold security incident response plans, tabletop exercises, and post-mortem processes throughout the organization
Establish metrics and KPIs to monitor the effectiveness of security programs and continuously improve them
Build and manage an impactful team, hiring world-class talent and fostering a culture of collaboration and accountability
Serve as a trusted advisor to the leadership team and board members on security risks, trends, and incidents
Lead vendor and third-party risk, including security evaluations and contract reviews

Benefits

Figma offers equity to employees, as well a competitive package of additional benefits, including health, dental & vision, retirement with company contribution, parental leave & reproductive or family planning support, mental health & wellness benefits, generous PTO, company recharge days, a learning & development stipend, a work from home stipend, and cell phone reimbursement.
Figma also offers sales incentive pay for most sales roles and an annual bonus plan for eligible non-sales roles.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume