You will work closely with the VP of Operations and VP of Engineering to serve as the subject matter expert for the security and compliance of the system architecture of WellSaid Labs. In this role, you will define and protect our data, systems, and networks to support SOC 2 compliance. This newly created role offers a unique opportunity to work with a leading AI enterprise platform solution while solving a wide range of complex security challenges. As a Director of Information Security, you are responsible for identifying, monitoring, and remediating security issues and other risks to WSL’s technology infrastructure.

In your day to day, you will: 

  • Diagram data flows and system architecture; define and implement improvements for both cyber and information security
  • Define and enforce security policies and procedures, conduct security audits and risk assessments, and implement security controls to protect internal and customer data
  • Lead efforts to maintain SOC 2 compliance, including quarterly and annual vulnerability reviews, ongoing policy updates and training, and continuous infrastructure oversight
  • Responsible for security questionnaire completion with new customers; represent WellSaid Labs in security team meetings with customers and investors
  • Drive WSL’s approach to data deletion, establish and enforce policies, and partner with external vendors to configure data deletion for scale
  • Recommend and lead efforts to achieve additional compliance certifications based on the current  state of security and what will most significantly contribute to business expansion (examples include ISO 27001, GDPR, and FedRAMP)

What We’re Looking For: 

To thrive in this role, you  have a combination of the following:

  • Bachelor’s degree or Master’s degree in Computer Science, Information Technology, Cybersecurity, or a related field
  • 7+ years of full-time experience in cybersecurity or information security as a security engineer or similar InfoSec roles
  • Experience working with customers and representing the company’s security interests
  • Experience working with various vendor types: financial and government institutions, international organizations, etc.
  • In-depth knowledge of cybersecurity principles, practices, technologies, and requirements, including but not limited to SOC2
  • Familiarity with security frameworks such as NIST, ISO 27001, and CIS Critical Security Controls
  • Effective communication skills to convey complex security concepts to non-technical stakeholders
  • Strategic thinking and the ability to align cybersecurity efforts with overall business goals
  • Experience in risk assessment and management, including the ability to identify, analyze, and prioritize security risks to the organization
  • Proficient in developing and implementing incident response plans and strategies for handling cybersecurity incidents
  • Hands-on experience with security tools and technologies, including firewalls, intrusion detection/prevention systems, antivirus software, encryption, etc.
  • A commitment to continuous learning and staying updated on the latest security threats, trends, and technologies
  • (Bonus) Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA)

To join our team, you also:

  • Must be a U.S. Citizen or Permanent Resident
  • Must pass a pre-employment background check

What We Offer 

WSL is proud to support an inclusive work environment that emphasizes each team member’s personal and professional growth. Our team is fully distributed throughout the U.S., and we support flexible schedules – work where and when you work best; we just ask that within your work day, you be able to meet our Core Business Hours of 10 a.m. – 2 p.m. PT.  You’ll have teammates just a Slack message or video call away if you ever need help solving an exciting challenge, or even if you just have a funny story to tell. We ask that you be able to travel up to four times per year, to spend valuable in person time with the team!

Compensation and Benefits 

As a startup, we strive to be externally competitive with companies of a similar size and stage and internally fair in our pay practices. The hiring salary range for this role is base pay of $160,000 – $185,000 annually. This represents the target offer range given the scope and experience expectations for this role.

Job Overview
Job alerts

Subscribe to our weekly job alerts below and never miss the latest jobs

Sign in

Sign Up

Forgotten Password

Job Quick Search