About the Role

We are seeking a proactive and visionary Director of Information Security to architect, scale, and evolve our organization's security program. In this role, you will shape strategy, align initiatives with business priorities, and lead execution in a rapidly evolving threat landscape. As the senior authority on cybersecurity, you will guide a skilled team of engineers and analysts, drive risk-based decisions, and safeguard the integrity of our systems, data, and operations.

You will own the company’s security governance framework—defining policies, overseeing risk assessments and audits, and ensuring business continuity and compliance. In close collaboration with engineering, you will lead secure cloud architecture, setting standards for IAM, encryption, networking, and baseline configurations. You will also drive efforts to meet regulatory and contractual obligations such as SOC 2, HIPAA, ISO 27001, and GDPR, while managing vendor risk and third-party reviews with a clear, risk-tiered approach. You bring a practical mindset that enables speed in R&D without compromising control in high-risk environments. Your work will influence how we scale, enforcing rigorous controls in production and regulated environments while streamlining requirements where appropriate.

This is a critical leadership role for a strategic, technically fluent leader with a proven ability to scale security programs that align with both engineering and business needs. You’ve built and led high-performing teams, and you thrive in cross-functional environments where collaboration with legal, compliance, and product stakeholders is essential. You’ll lead the development of security and compliance to serve not just current needs, but future opportunities.

If this feels like the kind of role you're ready to take on, we’d love to meet you.

Key Responsibilities

Strategic Leadership & Governance

• Define and execute the company-wide information security strategy.
• Champion a security-first culture across engineering, IT, compliance, and business teams.
• Lead annual security planning, budgeting, and roadmap alignment with business priorities.
• Present risk reports and security posture updates to executive leadership and stakeholders.
• Develop tiered security policies and risk models that distinguish between R&D, staging, and production thereby enabling fast, safe innovation while maintaining strong controls in regulated environments. Partner with engineering leads to evaluate risk trade-offs early in development.

Security Program Ownership

• Develop and maintain the security governance framework, policies, and procedures.
• Own and track progress on strategic security initiatives and KPIs.
• Lead enterprise risk assessments, threat modeling, and security audits.
• Ensure business continuity and disaster recovery plans are tested and maintained.

Cloud & Infrastructure Security

• Lead secure architecture and operations of cloud infrastructure, defining standards for IAM, encryption, networking, and baseline configurations in collaboration with engineering teams.

Security Operations & Incident Response

• Build and scale the Security Operations function (SIEM, EDR, threat intel, alerting).
• Lead the response and investigation of major security incidents.
• Guide detection engineering, threat hunting, and post-incident reviews.

Endpoint, Identity, and Email Security

• Ensure robust controls for endpoint protection, email filtering, and identity management.
• Drive adoption of zero-trust principles and support monitoring and hardening efforts.

Compliance & Audit

• Lead efforts to meet regulatory and contractual requirements (e.g., SOC 2, HIPAA, ISO 27001, GDPR).
• Coordinate with legal, compliance, and audit stakeholders to maintain readiness.
• Manage vendor risk assessments and third-party security reviews.
• Apply a risk-based compliance approach that enforces strict controls in regulated or customer-facing systems, while streamlining requirements in R&D and other lower-trust zones.

Team Leadership & Mentorship

• Recruit, mentor, and manage a growing security team.
• Foster a high-performance culture centered around learning, ownership, and collaboration.
• Support professional development and establish clear career paths within the team.

Qualifications

Required

• 8+ years of progressive experience in information security, including 3+ years in a leadership or management role.
• Proven experience leading company-wide security programs with deep expertise in cloud, infrastructure, and security operations.
• Strong understanding of common security frameworks (NIST, CIS Controls, MITRE ATT&CK).
• Demonstrated success leading incident response and forensic investigations.
• Experience with regulatory compliance programs and audit frameworks.
• Excellent communication skills with the ability to translate technical risk for non-technical stakeholders.

Preferred

• Advanced degree in Cybersecurity, Computer Science, or related field.
• Certifications such as CISSP, CISM, CCSP, or GIAC.
• Experience scaling security programs in high-growth or regulated environments.
• Familiarity with DevSecOps practices and automation tooling.

About us

SuperFile is a fast-growing technology company redefining file management with state-of-the-art innovation. We provide enterprise-grade scalability and security, protecting organizations with the latest breakthroughs in file technology. With solutions that are trackable, unhackable, and take-backable, we empower our clients to take full control of their files while maintaining the highest levels of data security and compliance. At SuperFile, we are dedicated to fostering a collaborative and inclusive workplace where innovation thrives and our team members excel.

<aside> <img src="/icons/invitation_gray.svg" alt="/icons/invitation_gray.svg" width="40px" /> Contact

Contact Us

If you have any question, please contact us at [email protected].

</aside>

<aside> <img src="/icons/send_gray.svg" alt="/icons/send_gray.svg" width="40px" /> Application

Apply for this position

https://tally.so/embed/wQajE1?alignLeft=1&hideTitle=1&dynamicHeight=1

</aside>

<aside> <img src="/icons/info-alternate_gray.svg" alt="/icons/info-alternate_gray.svg" width="40px" /> About us

Why work with us

At SuperFile, we believe that happy, healthy employees are the foundation of a thriving workplace. That’s why we offer a benefits package that supports your health, well-being, and work-life balance. When you join our team, you’ll gain access to a range of valuable benefits, including health, dental, and vision coverage, a 401(k)-retirement savings plan to help you achieve long-term financial security, as well as a generous Paid Time Off (PTO) policy that gives you the flexibility to take time when you need it most. Here’s what you can expect:

• Comprehensive Health Coverage: Stay healthy with access to robust health insurance plans, including medical, dental, and vision coverage for you and your family. Our plans are designed to offer flexibility, affordability, and access to top healthcare providers.
• Affordable Premiums & Low Co-Pays: We work to keep costs low, so your paycheck goes further. Our plans feature affordable premiums and competitive co-pays, ensuring you get the care you need without financial stress.
• Coverage for Your Loved Ones: We offer health, dental, and vision plans for dependents and partners, giving you peace of mind that your entire family is cared for.
• 401K: We know how important it is to plan for the future, and we’re committed to helping you build financial security. Our 401(k) plan is designed to give you the tools and support you need to prepare for retirement. Here’s how we make it easy for you to save:
  • Eligibility: Available to employees aged 21 with one year of service.
  • Employee Contribution: 1%–98% of W-2 wages, with contributions always 100% vested.
  • Employer Match: SuperFile matches 100% of the first 1% of compensation and 50% of the next 5% of compensation. Safe Harbor contributions will be 100% vested after two years of service.
• Accrued PTO: Your PTO is earned incrementally with each pay period, so you build up your time off throughout the year. This means you’ll have access to your earned PTO as soon as it accrues, allowing you to plan your time away in a way that works for you.
• Earn Up to 80 Hours of PTO Annually: Every year, you’ll have the opportunity to accrue up to a total of 80 hours (2 full weeks) of paid time off. Once you hit the 80-hour maximum, accruals pause until you use some of your available time. This ensures you have ample opportunity to use your time off.
• Start Earning From Day One: No waiting period required — you begin accruing PTO from your very first paycheck, so you can start planning your time off right away.
• Take Time When You Need It: Whether you need a vacation, personal day, sick day, mental health break, or a day to handle personal matters, our flexible PTO policy has you covered.
• Rollover Options: Roll over unused PTO into the following year, ensuring you don’t lose the time you’ve earned.
• Paid Holidays: In addition to your accrued PTO, enjoy 13 paid holidays throughout the year, giving you even more time to spend with family, friends, and loved ones.

</aside>

More Open Positions

Untitled