CrawlJobs Logo

Information Security Lead

United States, Philadelphia · Job Posted May 30, 2026
Apply Position
Job Link Share

Job Description

We’re hiring a Lead of Information Security, reporting to the VP of Technical Operations. You’ll architect and evolve the security and compliance foundation of our Concentriq platform—used in regulated environments around the world. This is a high-impact leadership role focused on building a modern, rigorous security program where AI tools are part of how you and your team think, investigate, and operate every day.

Job Responsibility

  • Manage and evolve vulnerability management— tooling, reporting, and remediation governance
  • Serve as a consultative security leader for Engineering, Product, and Customer teams—governing system designs, architecture, and implementation through a security-first lens
  • Implement AI native tooling to improve detection and response capabilities without incurring an increased demand on resources
  • Partner with Engineering to implement developer-friendly security tools that improve security posture and reduce compliance burdens without slowing velocity
  • Oversee incident response preparation, processes, and execution—ensuring coordinated action, effective communication, and the kind of thorough post-incident analysis that prevents the same problem twice
  • Under the direction VP, TechOps, improve the Proscia Information Security Program, with a focus on governance, risk, and compliance (GRC) across the Concentriq suite of applications and Proscia’s business applications
  • Contribute to security policy development across regulated and non-regulated markets—implementing agentic workflows where it accelerates your research and stress-testing, iterating with stakeholders, and maintaining the rigor and compliance standards our customers expect
  • Influence and execute on the company’s regulatory roadmap—seeking new certifications and frameworks (e.g., ISO 27001, SOC 2, HITRUST) in response to customer and market demands
  • Enable other teams to answer security-related questions from customers, prospects, and partners providing expert information security guidance
  • Anticipate and adapt to industry and regulatory trends, including how AI is reshaping both the threat landscape and the defender’s toolkit—and surface emerging requirements before they become urgent
  • Help shape internal security standards and documentation that work for both humans and AI-augmented workflows

Requirements

  • 5+ years of experience in information security, including direct experience improving, and contributing to GRC programs
  • Proven expertise in regulatory frameworks such as ISO 27001, SOC 2, GDPR, HIPAA, FedRAMP, TX-RAMP, StateRAMP or similar
  • Hands-on experience with vulnerability management tools, incident response, and security audits
  • Experience embedding security into software development lifecycles—DevSecOps principles applied in practice
  • Experience selecting, implementing, and managing security tooling (e.g., XDR, SIEM, endpoint, code scanning, etc.)
  • Exceptional communication and influencing skills across technical and non-technical teams
  • A high degree of autonomy and ownership—comfortable leading cross-functional efforts and prioritizing in a dynamic environment
  • You already use AI tools in your security work—for policy drafting, threat analysis, log review, control validation, or however it fits your practice
  • Experience with cloud-native environments (AWS preferred)
  • Experience building with or on top of LLMs, AI agents, or agentic pipelines
  • Familiarity with prompt engineering, tool use patterns, and evaluation of AI systems

Nice to have

  • Experience with SaaS platforms, and startup culture
  • A portfolio, published work, or contributions that show how you think about security problems
  • Background that spans multiple domains or disciplines
  • Active in security communities, forums, or meetups
  • Contributions to the broader AI security conversation

What we offer

  • Competitive pay
  • Savings options
  • Schedule options
  • Insurance options that promote long-term health and personal growth
  • Office environment designed for creativity and agility with walls as notepads and couches for collaboration
  • Located in the heart of Philadelphia with views of the city

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Information Security Lead

8 matching positions

Information Security Lead

We are looking for an experienced Information Security Lead to manage and enhanc...
Location
Location
United States , McAllen
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, or a related field, or equivalent experience
  • A minimum of 5–8 years of experience in information security or cybersecurity operations
  • Proven hands-on expertise with security technologies such as SIEM tools, vulnerability management systems, and endpoint protection solutions
  • Strong knowledge of identity and access management (IAM) principles, including privileged access controls and least privilege enforcement
  • Familiarity with cybersecurity compliance and risk management frameworks
  • Demonstrated ability to lead and coordinate responses to security incidents
  • Experience in developing and tracking security metrics, including KPIs and KRIs
  • Strong communication and collaboration skills to work effectively with IT teams, application teams, and business units
Job Responsibility
Job Responsibility
  • Direct and oversee daily security operations, including monitoring and triaging alerts, ensuring proper escalation procedures are followed
  • Develop and fine-tune detection use cases to address evolving security threats effectively
  • Implement and maintain robust security controls across all platforms and systems
  • Drive automation and orchestration efforts to improve operational efficiency and reduce manual processes
  • Lead incident response efforts, coordinating containment, eradication, and recovery activities across IT and business units
  • Maintain and regularly test incident response procedures and playbooks, ensuring readiness for security events
  • Supervise user provisioning and deprovisioning processes, enforcing access controls and periodic access reviews
  • Conduct risk assessments and ensure the implementation of security policies and procedures organization-wide
  • Develop and manage key performance and risk indicators to monitor and improve the organization's security posture
  • Mentor and provide leadership to security analysts and engineers, fostering a culture of collaboration and accountability
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right

Information Security Lead

As Information Security Lead, you'll be at the forefront of safeguarding our gro...
Location
Location
United States , New York
Salary
Salary:
130000.00 - 180000.00 USD / Year
clicktherapeutics.com Logo
Click Therapeutics
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience within a highly regulated industry such as medical devices, pharmaceuticals, biotechnology, or healthcare
  • Understanding of common security frameworks and standards, including NIST Cybersecurity Framework (CSF), ISO 27001/27002, and SOC 2.
  • Knowledge of risk assessment methodologies, threat modeling, network security, cloud security (AWS), application security, and data protection technologies.
  • Experience leading or participating in formal security audits.
  • Experience in interfacing with engineering teams and running in tiger-teams or embedded SME Scrum teams.
  • Leadership and communication skills, with the ability to articulate complex security concepts to technical and non-technical audiences.
Job Responsibility
Job Responsibility
  • Maintain, and continually improve the Information Security Management System (ISMS) to maintain relevant certifications (e.g., ISO 27001, SOC 2, IEC 81001-5-1 and UK Cyber Essentials Plus).
  • Lead the technical security aspects of data privacy to ensure compliance with GDPR, CCPA, and HIPAA.
  • Lead and mature the company's Security Operations Center (SOC) capabilities, including threat intelligence, monitoring, detection, and analysis.
  • Responsible for collecting, analyzing, escalating, and responding to cybersecurity vulnerabilities, threats, and attacks using SIEM and EDR technologies.
  • Collaborate with Engineering to ensure Secure Development Lifecycle (SDLC) practices are followed, integrating threat modeling, static/dynamic analysis, fuzz testing, and formal verification into the development process.
  • Develop and maintain reporting of Key Performance Indicators (KPIs) of threats and incidents, including incident response timeliness and general observability metrics.
  • Oversee security testing activities, including penetration testing and vulnerability scanning.
  • Conduct security training and awareness programs for employees to promote a culture of security.
  • Oversee all third-party and vendor risk management activities
  • Collaborate with Quality and Regulatory on cybersecurity processes
What we offer
What we offer
  • Competitive Salary with Annual Review
  • Cash Bonus
  • Stock Options
  • 5% 401(k) matching
  • Medical
  • Dental
  • Vision
  • Life Insurance
  • Voluntary Benefits
  • Unlimited PTO
  • Fulltime
Read More
Arrow Right

Information Security Lead

The Security Lead is responsible for building and executing a comprehensive cybe...
Location
Location
India , Pune
Salary
Salary:
Not provided
globalstep.com Logo
GlobalStep
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8–15 years cybersecurity experience
  • Experience building security programs
  • Strong SOC and risk knowledge
  • Experience with compliance frameworks
  • Strong communication skills
Job Responsibility
Job Responsibility
  • Define and execute security roadmap
  • Establish policies and risk management
  • Build SOC capabilities
  • Lead incident management
  • Support audits and compliance
What we offer
What we offer
  • Greenfield opportunity to build a security program
  • High visibility role with leadership and client exposure
  • Ability to design SOC and governance from ground up
  • Shape secure architecture across organization
  • Career path toward CISO-level leadership
Read More
Arrow Right

Senior Lead Information Security Office Consultant

At Capital One, you will help consult on initiatives, programs, and projects to ...
Location
Location
United States , Plano, Texas; McLean, Virginia
Salary
Salary:
Not provided
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cybersecurity or information technology
  • At least 5 years of experience providing guidance and oversight of cybersecurity concepts
  • At least 5 years of experience performing security risk assessments or security architecture reviews
  • At least 5 years of experience with architecture, software design, networking, or cloud infrastructure
  • At least 4 years of experience with cloud security engineering
  • At least 4 years of experience in securing a public cloud environment
Job Responsibility
Job Responsibility
  • Act as a central Information Security point of contact for the Data Protection Service, Endpoint Security and Cyber Intelligence services
  • Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management
  • Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
  • Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
  • Escalate and manage cyber security risk
  • Provide ad hoc support on special Information Security hot topics for the business
  • Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
  • Work with line of business leadership to anticipate their objectives and needs to better serve the line of business
What we offer
What we offer
  • Performance based incentive compensation which may include cash bonus(es) and/or long term incentives (LTI)
  • Health, financial and other benefits that support your total well-being
  • Fulltime
Read More
Arrow Right

Lead Information Security Engineer

My client is seeking an experienced Lead Information Security Engineer to suppor...
Location
Location
Ireland
Salary
Salary:
Not provided
nicollcurtin.com Logo
Nicoll Curtin
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong background in information security engineering within large environments
  • Hands-on experience with security governance, data protection, and risk management
  • Exposure to SaaS, cloud applications, and third-party risk
  • Confidence making and defending risk-based decisions
  • Experience with policy interpretation, enforcement, and escalation management
  • Strong analytical and documentation skills
Job Responsibility
Job Responsibility
  • Own key elements of the Shadow IT enforcement and governance process
  • Define and operate a blocking and escalation framework for unapproved applications
  • Assess risk based on data sensitivity, access, and exposure
  • Manage exceptions, unblock requests, and high-impact escalations
  • Document decisions clearly, including technical impact and policy alignment
  • Work closely with security, technology, legal, privacy, and business teams
  • Track and report Shadow IT metrics, trends, and outcomes
  • Contribute to the ongoing maturity of a scalable Shadow IT governance model
  • Fulltime
Read More
Arrow Right

Information Security Lead Analyst

Location
Location
Hungary , Budapest
Salary
Salary:
17157800.00 - 28767800.00 HUF / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years of relevant experience
  • Additional technical certifications are preferred
  • Demonstrated ability to research and apply current information regarding the IS field
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor's degree/University degree or equivalent experience
  • Master's degree preferred
Job Responsibility
Job Responsibility
  • Develop corrective action language for Information Security (IS) gaps and ensure risk closure meets Citi requirements or industry best practices
  • Facilitate the implementation of approved IS tools and identify/recommend new or improved security solutions or emerging technologies
  • Mitigate risk by analyzing the root cause of issues, impacts to business, and required corrective actions and develop security solutions
  • Ensure IS compliance and seek opportunities to enhance the efficiency of IS policies and procedures
  • Identify significant IS threats and vulnerabilities, and define appropriate controls for discovered threats, documenting the business response
  • Disseminate changes to IS regulations and standards to Business and Program owners
  • Provide Information Security advice and counsel as needed
What we offer
What we offer
  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Fulltime
Read More
Arrow Right

Senior Lead Information Security Office Consultant

As a Senior Lead Consultant in Capital One’s Cyber Information Security Office (...
Location
Location
United States , McLean
Salary
Salary:
229900.00 - 262400.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cyber security or information technology
  • At least 5 years of experience providing guidance and oversight of cyber security concepts
  • At least 4 years of experience performing cyber security risk assessments and cyber security architecture reviews
  • At least 4 years of experience with architecture, software design, networking or cloud infrastructure
Job Responsibility
Job Responsibility
  • Act as a central Information Security point of contact for a portfolio of customer servicing technology assets
  • Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management
  • Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
  • Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
  • Escalate and manage cyber security risk
  • Provide ad hoc support on special Information Security hot topics for the business
  • Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
  • Work with line of business leadership to anticipate their objectives and needs to better serve the line of business
What we offer
What we offer
  • Performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • comprehensive, competitive, and inclusive set of health, financial and other benefits
  • Fulltime
Read More
Arrow Right

Lead Information Security Engineer

Location
Location
Ireland , Dublin 18
Salary
Salary:
Not provided
mastercard.com Logo
Mastercard
Expiration Date
October 10, 2026
Flip Icon
Requirements
Requirements
  • Successful track record in identifying ways to modify the security program (data loss prevention) to keep up with the ever-changing technology & security landscape
  • Experience leading initiatives focused on enterprise data classification, DLP, and/or DSPM
  • Familiarity with enterprise data security concepts, cloud and SaaS environments, and modern collaboration platforms
  • Comfort working across audit, risk, privacy, and technology teams
  • Strong written and verbal communication skills, with the ability to explain security concepts clearly to diverse audiences
  • A mindset focused on outcomes, continuous improvement, and enabling the business securely
  • Ability to design, govern and communicate controls, not just operate tools (with understanding of industry security standards: NIST Cybersecurity Framework, NIST SP 800 53 / 800 171, ISO/IEC 27001 & 27002, Zero Trust, and more)
Job Responsibility
Job Responsibility
  • Support and evolve enterprise data classification and protection standards, ensuring sensitive data is consistently identified, labeled, and handled appropriately
  • Design, implement, and maintain DLP controls to detect, prevent, and respond to unauthorized data sharing or exposure across email, endpoints, collaboration tools, cloud services, and network channels
  • Contribute to Data Security Posture Management (DSPM) efforts by helping discover where sensitive data resides, who has access to it, and whether it is properly protected
  • Partner on data security governance activities, including policy alignment, exception handling, metrics, and continuous improvement initiatives
  • Support audit and regulatory responses (e.g., evidence gathering, control mapping, and issue remediation) in collaboration with Risk, Privacy, and Corporate Security stakeholders
  • Help define and track KPIs and KRIs to provide visibility into data security effectiveness, coverage, and risk trends
  • Act as a strong cross functional partner, balancing security, compliance, and business enablement while supporting Mastercard’s Zero Trust data strategy
  • Fulltime
Read More
Arrow Right