Head of Security

Our client, a data-driven organization in the logistics industry, are hiring their first Head of Security to join their team remotely. The successful candidate will establish and lead the company’s security, compliance and trust function from the ground up, as well as take ownership of security, risk, governance and organizational trust across the business.

Responsibilities

• Lead and maintain SOC 2 Type II compliance programmes.

• Drive compliance initiatives including ISO 27001, HIPAA readiness, GDPR and additional enterprise security frameworks.

• Build and scale governance, risk and compliance processes across the organisation.

• Lead enterprise customer security reviews, audits, questionnaires and vendor assessments.

• Partner with engineering teams on secure SDLC practices, threat modelling and application security.

• Strengthen API and integration security across customer-facing systems and platforms.

• Own cloud and infrastructure security across IAM, encryption, monitoring, logging and vulnerability management.

• Build and manage incident response processes, escalation procedures and post-incident reviews.

• Define and enforce controls around sensitive operational, telemetry, location and PII data.

• Report directly to the CEO and provide regular updates to leadership and the board on security posture and risk.

Skillset

• 10 years of experience within cybersecurity, including at least 3 years leading security functions in SaaS or data-platform environments.

• Previous experience operating as a Head of Security, CISO or in a similar security leadership position.

• Proven track record delivering and managing SOC 2 Type II programmes end-to-end.

• Strong technical understanding of cloud security, application security, and modern SaaS architectures.

• Experience leading enterprise customer security reviews, audits, and risk assessments.

• Solid knowledge of governance, risk, and compliance frameworks within enterprise environments.

• Excellent communication skills with the ability to manage and influence senior stakeholders.

• Experience working with frameworks such as ISO 27001, HIPAA, FedRAMP, or similar standards is a bonus.

• Previous experience working within Seed to Series B startup environments is a plus.

• Relevant industry certifications such as CISSP, CISM, CCSP, or AWS Security Specialty would be highly desirable.

Benefits

• Salary: $200k – $260k DOE.

• Equity.

• 401(k) match

• Fully remote working within the U.S.