Director, Information Security

6+ years of prior experience in information security and/or risk management, preferably at a SaaS company 3+ years of management experience Experience working in a fast-paced, startup environment Experience implementing SOC II, GDPR and CCPA compliance Skill with collaboration, mentoring, learning from other engineers, and treating colleagues with empathy and respect Excellent verbal, written and interpersonal communication skills Deep knowledge and application of software development and quality assurance methodologies Proven track record of designing, launching, and driving successful adoption of company-wide security initiatives and programs Professional security management certification such as CISSP, CCISO, CISM, GIAC, and/or other CISA (Nice-to-have) Familiarity with AWS (or an equivalent cloud-provider) and the related security best practices (Nice-to-have)

Define and drive information security roadmap, strategy, tactics, and execution Lead and mentor a team of security engineers Architect programs and processes to evaluate and enhance information security policies Partner with engineering teams to ensure security concerns are first-class product requirements Respond effectively to security-related incidents Participate in externally requested security audits Lead efforts to review and update information security and privacy policy best practices Work with policy team on regulatory structures for utility data access and security Oversee and coordinate security efforts across the company Stay up to date with IT/Security industry trends and evaluate new solutions Launch company-wide security initiatives and training