Director of Information Security and IT

<h2><strong>About the role</strong></h2> <p>We're hiring a Director of Information Security and IT to own our information security function and IT operations end-to-end. This is a working leadership role that consolidates responsibilities historically split across multiple roles under a single accountable leader. You'll partner directly with the VP of Technology &amp; Professional Services and the Corporate Leadership Team on our IT and security strategy.</p> <h2><strong>What you'll own</strong></h2> <ul> <li>Information security — strategy, governance, risk, compliance, and incident response across corporate IT, product infrastructure, and customer-facing solutions</li> <li>IT operations — software portfolio, vendor relationships, contracted support, hardware lifecycle, business continuity, and disaster recovery</li> <li>Our IT automation infrastructure (agents, skills, operational scripts) that keeps a lean team moving</li> <li>The security relationship with our customers — questionnaires, audits, and escalations — and our representation to prospects, partners, and regulators</li> </ul> <h2><strong>What we're looking for</strong></h2> <ul> <li>8+ years of progressive experience across information security and IT operations, with at least 3 years carrying significant security responsibilities</li> <li>Hands-on technical depth in Linux server administration, scripting, and modern infrastructure tooling</li> <li>Working knowledge of containerization (Docker, Kubernetes), virtualization, and cloud infrastructure security</li> <li>Experience implementing and operating security frameworks such as SOC 2, ISO 27001, or NIST CSF, and managing external audits</li> <li>Demonstrated experience leading incident response end-to-end</li> <li>Familiarity with DevSecOps practices and with building or operating automated / agentic operational workflows</li> <li>Strong communication skills across executive, customer, and regulator audiences</li> <li>Bachelor's or higher in CS, Information Security, IT, Engineering, or equivalent experience CISSP, CISM, CCSP, OSCP, or equivalent certifications preferred</li> </ul> <h2><strong>Why this role</strong></h2> <p>You'll be the single accountable leader for security and IT at a company where you can shape the operating model, and serious enough that the work matters to customers, regulators, and the leadership team. We're looking for a player-coach who builds for automation first.</p>