RemoteLeaf Logo
Log in Sign up

Director of Security Risk & Trust

1 week, 3 days ago
United States
Full-time
Executive
Penetration Tester
Cybersecurity
AWS Azure CloudFormation Encryption GCP Go HIPAA Machine Learning Python Terraform
Apply Now
Klaviyo

Klaviyo

Klaviyo offers intelligent email marketing, SMS, and automation services for ecommerce businesses, empowering brands to personalize customer interactions and drive growth.

IT Services
1K-5K
Founded 2012
View All Jobs 112

Description

  • Define and execute the Risk and Trust strategy aligned to company growth, product evolution, and expansion into new markets and regulated industries.
  • Own the compliance roadmap across multiple frameworks, including ISO 27001, ISO 42001, ISO 27017, ISO 27018, SOC 2 Type II, HIPAA, GDPR, and CCPA/CPRA.
  • Build a risk management program that quantifies risk in business terms and informs decision-making.
  • Translate regulatory and compliance requirements into clear engineering requirements for development teams.
  • Build and maintain compliance-as-code infrastructure, including automated evidence collection, continuous control monitoring, and policy-as-code.
  • Design tooling and integrations that connect GRC workflows with CI/CD, cloud infrastructure, and identity platforms.
  • Partner with Engineering and Platform teams to embed security and compliance controls into the SDLC, provisioning, and deployment pipelines.
  • Develop and implement AI/ML governance frameworks and oversee AI-specific risk assessments.
  • Work with Product, Legal, Privacy, Sales, Customer Success, Trust, executives, and the Board to communicate risk posture and support customer-facing security needs.
  • Conduct technical risk assessments, review architecture designs, troubleshoot control gaps, and lead critical compliance and incident-driven initiatives.

Requirements

  • 10+ years of experience in security, governance, risk, and compliance, including at least 5 years in a leadership role at a high-growth technology or SaaS company.
  • Strong engineering and technical foundation, including coding experience in Python, Go, or similar languages.
  • Deep expertise across compliance frameworks such as ISO 27001, ISO 42001, ISO 27017, ISO 27018, SOC 2, HIPAA, GDPR, and SOX IT controls.
  • Demonstrated experience in AI/ML security and governance, including familiarity with AI-specific risk frameworks and responsible AI principles.
  • Hands-on experience with cloud infrastructure and security, preferably AWS, including IAM, networking, encryption, logging/monitoring, and infrastructure-as-code tools such as Terraform or CloudFormation.
  • Proven ability to build compliance-as-code and automated GRC capabilities, including evidence collection automation and continuous monitoring.
  • Exceptional cross-functional leadership skills with experience influencing Engineering, Product, Legal, and executive stakeholders.
  • Experience managing external audits and regulatory examinations end-to-end with clean results and efficient audit processes.
  • Strong communication skills with the ability to explain complex technical and regulatory concepts to engineers, executives, and board members.
  • Ability to stay technically current with cloud platforms, infrastructure-as-code, security tooling, and modern software development practices.

Benefits

  • Base salary range of $233,600 to $350,400 USD for US locations.
  • Eligibility for the company’s annual cash bonus plan.
  • Eligibility for equity.
  • Eligibility for sign-on payments.
  • Comprehensive health, welfare, and wellbeing benefits based on eligibility.
  • Flexible travel expectations of up to 10%, coordinated in advance.
  • Supportive accommodations as needed, including around AI fluency and responsible AI use.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Slingshot Aerospace

Manager, Orbital Analysis

Slingshot Aerospace 51-250 Diversified Telecommunication Services

Slingshot Aerospace is hiring a Manager, Orbital Analysis to lead a globally distributed team delivering Space Domain Awareness operations and customer support for commercial, civil, and government partners.

United States United Kingdom Full-time Lead Operations Manager Program Manager
$125k-$150k
1 hour, 8 minutes ago
Insurance Institute for Business & Home Safety

Director, FORTIFIED Roof

Insurance Institute for Business & Home Safety 51-250 Insurance

The Director of FORTIFIED Roof will lead a program focused on improving the resilience of residential roofing systems against severe weather through standards development, stakeholder engagement, and technical oversight at the Institute.

United States Full-time Executive Program Manager
1 hour, 27 minutes ago
Anduril Industries

Program Director, Rocket Motor Systems

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring a Director of Programs for its Rocket Motor Systems division to lead portfolio execution and business strategy for advanced solid rocket motor programs supporting defense and space applications.

United States Full-time Lead Program Manager
$190k-$252k
JIRA
2 hours, 3 minutes ago
Databricks

Delivery Solutions Architect

Databricks 1K-5K IT Services

Databricks is hiring a Delivery Solutions Architect to lead post-sale technical strategy and customer execution for strategic data and AI use cases across complex accounts.

United Kingdom Full-time Senior Program Manager Solutions Engineer
Apache Spark Databricks MLflow Python
3 hours, 19 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers