Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Sr. Director of Security (SaaS Security): Set and deliver the security strategy for an AI-native SaaS platform, leading Application Security (Product Security), Infrastructure Security, Detection & Response, and GRC. Focus on building secure-by-default development and AI/agent trust controls, running end-to-end detection & incident response (including product security incident response and bug bounty triage), and driving enterprise risk management with executive-ready communication.
Location: Remote
Salary: $308.4K–$462.6K (US) / CA$308.4K–CA$462.6K (Canada)
Company
Zapier builds automation products and AI-enabled services for enterprise and consumer workflows.
What you will do
- Define the security vision, strategy, and multi-year roadmap for an AI-native SaaS platform, including security for AI features, agentic workflows, and integrations with frontier models.
- Lead Application Security, Infrastructure Security, Detection & Response, and GRC engineering teams.
- Own and evolve the risk management program: identify, quantify, prioritize, mitigate, report to executives, and drive intentional risk acceptance.
- Run modern detection & response and incident response end-to-end, including product security incident response, bug bounty triage, customer/regulator communications, root cause, and durable remediation.
- Partner with Product, Engineering, and Enterprise Governance to design enterprise-grade trust features and controls (including AI/agent boundaries and contract commitments).
- Drive company-wide security change (standards, golden paths, technical gates, vendor/procurement patterns, and workforce AI use) and recruit/hire top talent for the security org.
Requirements
- Experience leading security teams for SaaS product companies using modern cloud and identity threat models.
- Deep expertise in at least one security discipline (Application/Product Security, Infrastructure Security, Detection & Response) with broad capability across the others.
- Proven ability to run detection & response and incident response programs end-to-end, including product security incident response and bug bounty operations.
- Strong executive communication and risk management skills: translate complex technical risk into executive-ready narratives and drive decisions under ambiguity.
- Experience leading and scaling diverse engineering organizations (managing managers/tech leads/senior ICs, forecasting staffing, and coaching for autonomy).
- Ability to drive security change across the company through influence, enforcement, and adoption (not only within Security).
Culture & Benefits
- Remote-first work model.
- Competitive and equitable compensation philosophy with pay for impact.
- Compensation includes base pay plus equity and bonus.
- Opportunity to grow toward Chief Security Officer based on outcomes, presence, and trust with leadership.
Hiring process
- Compensation package is finalized after the interview process based on experience, job knowledge, skills, abilities, and internal equity.
- Interview process includes evaluation of security leadership, risk management, and ability to drive security strategy and change.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →