Director, Information Security and Compliance

What you will do:

• Develop and Implement Security Strategies: Design and execute comprehensive security strategies and policies to protect the organization’s assets, including products, platforms, digital, and human resources.
• Lead, mentor, and manage a team of IT and security engineers.
• Drive design, implement, monitor and administer security systems including identity management, service management, data loss prevention (DLP), Endpoint Detection and Response (EDR), SaaS environments such as AWS and patch management applications and systems.
• Use hands-on technical skills and experience to implement and configure security software and patches across multiple platforms.
• Update information security policies and align business processes with information security procedures.
•  Support the company's information security risk management program by conducting information security risk assessments on IT applications, systems, partners, vendors, contractors, and integrations.
• Design and maintain SaaS and Cloud security architecture and configurations.
• Collaborate with other departments and stakeholders to ensure a unified and agile response to security threats, fostering cross-functional collaboration and alignment. 
• Support SOC2 and SOX compliance, as well as any additional compliance standards

Who you are:

• 8-10 years of experience in information security and compliance. Previous experience leading a technical/engineering organization is strongly preferred.
• Experience in a publicly traded company
• Excellent leadership, communication, and interpersonal skills. You are a hands-on leader who leads by example.
• Hands-on experience with secure software development methodologies and Dev SecOps practices. Experience with SaaS and Cloud architectures and concepts
• Strong understanding of business operations and ability to communicate effectively with stakeholders; including executives. 
• Excellent written and verbal communication skills, with the ability to articulate complex security concepts to both technical and non-technical audiences.
• Bachelor's degree in computer science, information technology, or a related field
• Relevant certifications, such as CISSP, CISM, CISA, or similar, are highly desirable.




The US base salary range for this full-time position is $167,424 to $261,608 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.


We want to hear from you! We are looking to build the best team of people who will be empowered to do their best work. If you have what it takes, but don’t necessarily meet every bullet in the job description we encourage you to apply.

Perks & Benefits

• Comprehensive health plans* – 100% of premiums covered for employees & 88% of dependent   premiums for US employees
• Flexible Time Off for Exempt Employees/Generous PTO plan for Non-Exempt Employees – Take time to rest, relax and explore! Plus we offer Summer Fridays!
• 401k,  Company ownership in the form of RSU’s & ESPP Program
• Medical and retirement benefits vary by Country 
• For more detail visit www.matterport.com/careers