Senior Director, Security & Compliance

We’re looking for a Senior Director, Security & Compliance, who will be  responsible for overseeing and leading the organization’s security strategy and compliance initiatives. This role ensures the protection of information assets, mitigates security risks, and ensures compliance with all relevant regulatory requirements. The Senior Director will work closely with cross-functional teams to establish and enforce security policies, procedures, and standards while embedding a security-first culture throughout the company.

What would you do, if hired?

• Lead the development and maintenance of policies and procedures to meet regulatory requirements and internal standards.
• Ensure compliance with all relevant regulations, standards, and industry best practices, including GDPR, SOC2, HIPAA, and others.
• Lead and execute annual SOC2 audit and regular vulnerability scans/penetration tests of production environments.
• Identify security risks and vulnerabilities and develop risk mitigation strategies and controls to address identified threats.
• Oversee the design and  implementation of security technologies and infrastructure.
• Lead  security incident response planning, ensuring timely and effective resolution.
• Customer-facing support for negotiating security contract terms, including pre-sales responses to security and due diligence questionnaires.
• Work closely with executive leadership, Engineering, IT, Marketing, Legal, HR, and other departments to ensure a cohesive approach to security and compliance.
• Develop and deliver security awareness training and awareness programs for employees at all levels to promote a security-conscious culture
• Provide leadership and direct management to the security and compliance team, and fostering a culture of security awareness and continuous improvement company wide.

Who are we looking for?

• Bachelor’s degree in Information Security, Computer Science, or a related field; Master’s degree preferred.
• 10+ years of experience in security and compliance roles, with  5+  years in a leadership position, ideally within a SaaS or technology-driven environment.
• Expertise in security frameworks, standards, and regulations (e.g., ISO 27001, NIST, GDPR, CCPA, HIPAA, SOC 2, GRC, SOX).
• Proven track record of developing and implementing security and compliance strategies in a fast-paced, growth-oriented company.
• Strong technical knowledge of security technologies, including firewalls, intrusion detection/prevention systems, encryption, and vulnerability management tools.
• Exceptional leadership, communication, and interpersonal skills.
• Relevant certifications such as CISSP, CISM, CISA, CRISC, or equivalent are highly desirable.

Celigo reasonably expects to pay a base salary between $173,000 per year and $210,000 per year for this position.  Actual starting base pay will be determined by skills, experience, geographic location, and other non-discriminatory factors permitted by law. Total compensation may also include variable incentives, benefits, or other perks as outlined in any formal employment offer made.

Why Celigo

• Celigo is a Visionary in the 2024 Gartner Magic Quadrant for iPaaS, a 2024 Gartner Customer Choice for iPaaS, a G2 iPaaS Leader, and a recognized leader in AI.
• Remote-first culture
• Competitive compensation
• High-growth, collaborative, and inclusive work environment
• Starting with your first year, we offer 3-weeks of vacation, wellness days, and holidays to recharge and spend time with family and friends
• Generous benefits package, including parental leave
• Monthly tech stipend
• Recognition opportunities

Diversity, Equity, Inclusion, and Accessibility