Remotery

Director of IT Security

Posted Jun 30

This is a fully remote position, open to applicants in Canada.

📋 Description

• Design and implement the organization's information security strategy along with a scalable security roadmap.

• Create and uphold enterprise security policies, standards, and governance frameworks.

• Communicate cybersecurity risks, recommendations, and security metrics to executive leadership.

• Collaborate with department leaders to ensure security is woven into business operations and decision-making processes.

• Conduct continuous enterprise-wide cybersecurity risk assessments across infrastructure, endpoints, applications, and business processes.

• Develop and manage the organization's cybersecurity risk register and remediation roadmap.

• Direct vulnerability management initiatives and prioritize remediation efforts based on business risk.

• Execute third-party vendor security evaluations and ongoing vendor risk management.

• Oversee the organization's incident response program, including playbooks, tabletop exercises, and post-incident reviews.

• Manage endpoint security, identity and access management, privileged access controls, multi-factor authentication, and device security.

• Lead security compliance efforts, including SOC 2 Type II and future security certifications.

• Develop and/or oversee company-wide security awareness and phishing training initiatives.

• Inform employees about evolving cybersecurity threats, social engineering tactics, AI usage, and best practices for data protection.


⛳️ Requirements

• A minimum of 7 years of experience in cybersecurity, information security, or risk management.

• At least 3 years of experience leading enterprise security programs or security teams.

• Proven experience in conducting cybersecurity risk assessments and threat modeling.

• In-depth knowledge of cloud-first and SaaS-based environments, including Google Workspace, Salesforce, NetSuite, Okta, and modern identity platforms.

• Experience in implementing and maintaining security frameworks such as SOC 2, ISO 27001, or the NIST Cybersecurity Framework.

• Comprehensive understanding of endpoint security, identity management, vulnerability management, incident response, and security operations.

• Experience working in fully remote organizations that support distributed workforces.

• Excellent executive communication skills with the ability to translate technical risk into business impact.

• CISSP, CISM, CRISC, or another equivalent cybersecurity certification is highly preferred.


🏝️ Benefits

• Medical, dental, vision plans, disability, and life insurance coverage for you and your family.

• 100% employer-paid plan for you and a 50% employer contribution for your dependents.

• Access to certified therapists through Spring Health, along with a membership to Headspace.

• Physical therapy through Omada, fertility support through Carrott, thousands of Aaptiv virtual workouts, and complimentary One Medical membership for primary and virtual care.

• Unlimited PTO (minimum of 2 weeks), Paid Company Holidays, Your Birthday Off, End of Year Recharge (Closed December 24 - January 1), Paid Parental Leave.

• Traditional and Roth 401(k) with a 3% company match.

• Annual bonus based on tenure, which increases in total amount over time.

People also viewed

Salesforce2 days ago

Security Practices Director

US flagColorado, +4 more statesFull-timeCybersecurity / Security Engineer$171.2k – $273k/year
ApplyView job
Plurilock2 days ago

Endpoint Security Engineer – Carbon Black, Symantec

US flagNew Jersey OnlyFreelanceCybersecurity / Security Engineer
ApplyView job
Navitas Business Consulting, Inc.2 days ago

Security & Endpoint Engineer

IN flagIndia OnlyFull-timeCybersecurity / Security Engineer
ApplyView job
Foresite Cybersecurity3 days ago

Offensive Security Engineer, Horizon3.ai NodeZero

US flagUnited States OnlyFull-timeCybersecurity / Security Engineer
ApplyView job
Avint3 days ago

Information Systems Security Officer – Subject Matter Expert

US flagUnited States OnlyFull-timeCybersecurity / Security Engineer$132k – $150k/year
ApplyView job
Heartland Solutions GmbH3 days ago

Information Security Consultant – m/w/d

DE flagGermany OnlyFull-timeCybersecurity / Security Engineer€50k – €60k/year
ApplyView job

Never miss a great job!

Get handpicked remote jobs straight to your inbox weekly.

Trusted by 7,400+ designers