Head of Security

About the Role

Given the nature of Protege's mission, the security landscape is dynamic and constantly evolving. The Head of Security must stay abreast of the latest security threats, technologies, and methodologies to maintain the company's security posture. This role involves a deep understanding of cloud security, with experience in AWS, GCP, or Azure, as well as expertise in identity and access management, data protection at scale, and compliance frameworks such as SOC 2 and ISO 27001.

As a leader in the security domain, the Head of Security will not only be responsible for the technical aspects of security but also for fostering a culture of security within the organization. This includes educating teams on security best practices, developing security policies, and ensuring that security considerations are integrated into all business decisions.

What You Will Do

• Develop and execute a comprehensive security strategy that aligns with Protege's business goals and objectives.
• Lead the design and implementation of security architecture for cloud-based systems, ensuring scalability and high availability.
• Manage and oversee security operations, including incident response, vulnerability management, and security monitoring.
• Collaborate with engineering teams to ensure security is integrated into the development lifecycle.
• Conduct security risk assessments and provide recommendations for mitigation or remediation.
• Develop and maintain security policies, procedures, and standards.
• Ensure compliance with relevant security regulations and standards, including HIPAA, SOC 2, and ISO 27001.
• Manage security budgets and resource allocation.
• Stay updated with emerging trends and technologies in security, applying this knowledge to continuously improve Protege's security posture.
• Foster a culture of security awareness within the organization, providing training and educational programs for employees.

What We Are Looking For

• 8+ years of experience in security roles, with at least 2 years in a leadership capacity.
• A deep technical foundation with experience working as or alongside engineers.
• Proven experience in building or significantly maturing a security program at an early-stage or high-growth company.
• Strong understanding of cloud security, identity and access management, and data protection at scale.
• Hands-on experience with compliance frameworks such as SOC 2 and ISO 27001.
• Experience with HIPAA compliance.
• Ability to operate as both an individual contributor and a leader.
• Strong communication and interpersonal skills, with the ability to effectively collaborate with technical and non-technical teams.

Nice to Have

• Experience in AI or a related field.
• Knowledge of emerging security technologies and trends.
• Certification in security management or a related field (e.g., CISSP, CISM).
• Experience with DevSecOps practices and tools.
• Familiarity with agile development methodologies.

Benefits and Perks

• Generous Paid Time Off to ensure a healthy work-life balance.
• 401k Matching Retirement Plan to support long-term financial planning.
• Four Day Work Week, reflecting Protege's commitment to flexibility and productivity.
• Opportunities for professional growth and development in a rapidly evolving field.
• Access to the latest security tools and technologies.
• Remote work arrangement, allowing for flexibility and autonomy.
• Comprehensive health insurance package.
• Annual budget for security conferences and training.

• Highlight technical skills: Ensure your resume and cover letter clearly outline your experience with cloud security, identity and access management, and compliance frameworks.
• Prepare for behavioral interviews: Be ready to give specific examples of how you've built or matured security programs, managed security operations, and fostered a culture of security within previous organizations.
• Showcase your understanding of AI security: Demonstrate your knowledge of security challenges and solutions specific to the AI sector, and how you can apply this knowledge to Protege's unique needs.
• Emphasize leadership and collaboration skills: As a Head of Security, you'll need to lead teams and collaborate with stakeholders across the organization. Prepare examples that illustrate your leadership, communication, and interpersonal skills.
• Research Protege's mission and values: Understanding the company's mission to solve the biggest unmet need in AI and its values will help you tailor your application and prepare for interviews, showing how your skills and experience align with Protege's goals.
• Be ready to discuss security trends and technologies: Stay updated on the latest security trends, technologies, and methodologies, and be prepared to discuss how you see these evolving in the context of Protege's security strategy.
• Prepare questions for the interviewer: Come up with thoughtful questions about the role, the company's approach to security, and the team you'll be working with, demonstrating your interest in the position and your willingness to learn.