RemoteLeaf Logo
Log in Sign up

Director of Security/GRC

1 month, 1 week ago
United States
Full-time
Executive
Penetration Tester
Cybersecurity
AWS Azure Cybersecurity GCP SIEM
Apply Now
Censys

Censys

Censys provides security teams with a comprehensive and accurate mapping of the internet, enabling them to effectively defend against attack surfaces and proactively hunt for threats.

IT Services
51-250
Founded 2017
$53M raised
View All Jobs 14

Description

  • Own, build, and scale Censys’ corporate security infrastructure and systems.
  • Manage the Security team and delegate day-to-day work while maintaining coverage for critical functions.
  • Own the endpoint lifecycle, including provisioning, application deployment, security controls, and asset retirement.
  • Manage and secure cloud environments and coordinate the security configuration of software and tools.
  • Develop and deliver security awareness training for internal users.
  • Design, implement, and manage the company’s Data Loss Prevention program across endpoints, cloud, and email.
  • Own and operate the insider threat program, including monitoring, investigations, and coordination with Legal, HR, and leadership.
  • Partner with engineering and infrastructure teams to ensure security telemetry and logging coverage meets operational and compliance needs.
  • Lead compliance strategy and maintain alignment with ISO 27001, SOC 2 Type 2, UK NCSC Cyber Essentials+, and CMMC.
  • Develop and update organizational policies, procedures, control libraries, and process documentation, and support security questionnaires, legal requests, procurement reviews, and risk assessments.

Requirements

  • 10+ years of progressive experience in cybersecurity, including at least 3 years in a senior leadership or Director-level role.
  • Demonstrated experience owning enterprise security programs, including DLP, insider threat, and detection and response.
  • Deep familiarity with compliance frameworks including ISO 27001, SOC 2 Type 2, CMMC, NIST, and GDPR.
  • Experience building and managing security telemetry, SIEM, and detection engineering programs.
  • Strong understanding of cloud security across AWS, GCP, or Azure, plus endpoint security and identity and access management.
  • Proven ability to lead, mentor, and grow a high-performing security team.
  • Excellent written and verbal communication skills for executive leadership, legal, and non-technical stakeholders.
  • Experience managing security incident response and coordinating across Legal, HR, and executive leadership.
  • Background in security program development within a high-growth or scale-up environment.
  • Remote work eligibility within the continental United States.

Benefits

  • Salary range of $206,000-$237,000 in high cost of living areas or $180,000-$220,000 in other U.S. locations.
  • Bonus eligibility and equity.
  • Benefits effective on day one.
  • 401(k) match.
  • Health, vision, and dental coverage.
  • Remote work across the continental U.S.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

The Missing Link

Saviynt IAM Specialist

The Missing Link 51-250 Internet Software & Services

The Missing Link is seeking a Security Engineer - Saviynt to support large enterprise identity governance initiatives, design and deliver Saviynt-based solutions, and strengthen its growing cyber security practice.

India Full-time Mid Level Security Engineer
Active Directory Azure Cybersecurity JavaScript PowerShell REST API SAP SQL
9 hours, 51 minutes ago
Belmont Lavan

Oracle Security & Controls consultant 6 Months Contract

Belmont Lavan 11-50 Professional Services

Belmont Lavan Ltd is hiring an Oracle Security & Controls Consultant for a 6-month contract to assess, design, and implement security controls across Oracle environments that support data integrity, confidentiality, and regulatory compliance.

Sweden Denmark Contract Mid Level Database Administrator Penetration Tester
Oracle
10 hours, 6 minutes ago
BHG Financial

Senior Information Security GRC Specialist

BHG Financial 1K-5K Diversified Financial Services

BHG Financial is hiring a Senior Information Security GRC Specialist to lead enterprise business continuity and disaster recovery efforts while supporting risk and compliance initiatives for its financial services operations.

United States Full-time Senior Penetration Tester
10 hours, 6 minutes ago
EnableComp

AI Security Architect (REMOTE - United States)

EnableComp 251-1K Insurance

EnableComp is seeking a remote AI Security Architect to secure and govern its AI and machine learning initiatives within its healthcare revenue cycle management environment.

United States Full-time Senior AI Engineer Security Engineer
Azure Cybersecurity HIPAA LLM Machine Learning
10 hours, 6 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers