CrawlJobs Logo
Corporate Tools Logo Corporate Tools · IT - Administration

Security and Compliance Lead

110000.00 - 120000.00 USD / Year · Job Posted December 07, 2025
Apply Position
Job Link Share

Job Description

We’re on the hunt for a hands-on, sharp-thinking Security & Compliance Lead to level up the physical and operational security of our data center. If you thrive in fast-moving environments, love solving complex problems, and know how to turn policy into action you’ll fit right in. In this role, you’ll be the go-to expert on everything from physical access controls and compliance standards to threat detection and incident response. You’ll work closely with IT, facilities, and leadership teams to build smart strategies, lead investigations, and keep our data center rock-solid. Think of yourself as part detective, part strategist, part guard dog; helping us stay ahead of threats with layered defenses, real-time monitoring, and a strong culture of security awareness. Whether you’re jumping into a live incident or preparing for the next big audit, you’ll have the autonomy to make smart calls and the trust to follow through.

Job Responsibility

  • Develop and maintain security policies, standards, and baseline configurations for the data center
  • Enhance layered physical security systems, including CCTV, badge readers, biometrics, and intrusion alarms
  • Manage 24/7 access controls, including visitor management, staff clearances, badge systems, and vendor accreditation
  • Lead risk assessments (e.g., FMEA, threat modeling), identify vulnerabilities, and recommend remediation
  • Ensure compliance with standards like SOC 2, ISO 27001, and PCI DSS
  • coordinate audits and maintain audit-ready documentation
  • Serve as Incident Commander or key responder for physical breaches, alarms, or policy violations
  • lead investigations and reporting
  • Maintain and improve incident response playbooks
  • train staff on protocols and best practices
  • Deploy and manage security monitoring tools (e.g., SIEM, physical access logs) and define KPIs for access attempts and compliance health
  • Deliver regular security reports to leadership and key stakeholders
  • Run training and awareness programs for staff and contractors on physical security and compliance
  • Oversee vendor and third-party compliance through assessments, audits, and contractual reviews
  • Continuously improve security posture by applying industry best practices and staying current on emerging threats and technologies

Requirements

  • Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or equivalent experience in security and compliance
  • 5+ years in security, compliance, or audit roles within IT infrastructure or data centers
  • Demonstrable experience managing SOC 2, ISO 27001, PCI DSS, HIPAA, or GDPR compliance
  • Hands‑on familiarity with physical security systems like CCTV, badge control, biometric access, and alarms
  • Deep knowledge of SIEM systems, incident response frameworks, and risk assessment methodologies
  • Comfortable with networking/physical infrastructure concepts: VLANs, firewalls, environmental sensors, racks
  • A great human
  • Strong leadership and interpersonal skills
  • A person who gets things done themselves with or without a team

What we offer

  • 100% employer-paid medical, dental and vision for employees
  • Annual review with raise option
  • 22 days Paid Time Off accrued annually, and 4 holidays
  • After 3 years, PTO increases to 29 days. Employees transition to flexible time off after 5 years with the company—not accrued, not capped, take time off when you want
  • The 4 holidays are: New Year’s Day, Fourth of July, Thanksgiving, and Christmas Day
  • Paid Parental Leave
  • Up to 6% company matching 401(k) with no vesting period
  • Quarterly allowance
  • Use to make your remote work set up more comfortable, for continuing education classes, a plant for your desk, coffee for your coworker, a massage for yourself... really, whatever
  • Open concept office with friendly coworkers
  • Creative environment where you can make a difference
  • No dumb benefits like free dog walking on the weekends that snobby hipster places have to make you feel cool, but mathematically won't cost the company much money because you won't use it
  • Trail Mix Bar
Corporate Tools - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Security and Compliance Lead

8 matching positions

Data Governance, Compliance and Security Lead

Over the past 12 months, AO has seen incredible growth, and with ambitious plans...
Location
Location
United Kingdom , Bolton
Salary
Salary:
Not provided
ao.com Logo
AO
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Lead the charge on defining and delivering AO’s Data Governance, Security & Compliance strategies
  • Own the roadmap and drive the projects that bring your strategy to life
  • Get stuck in—implementing standards, tools and third-party tech
  • Take ownership of audit points, risk registers and security requirements for the Data team
  • Solve problems with impact—propose and deliver solutions to close audit gaps
  • Build the model—create and roll out our operating framework across Tech and the wider business
  • Shape the conversation—chair the Data Governance Board
  • Set the standard—define data processes, best practices and design patterns
  • Drive awareness—lead literacy initiatives to embed governance, security and compliance
  • Influence at every level—build strong relationships with senior leaders, stakeholders and teams
Job Responsibility
Job Responsibility
  • Take the lead on shaping and delivering our group-wide approach to Data Security, Compliance and Governance
  • Build something from the ground up
  • Bring together strategy, stakeholders and solutions under one roof
  • Define the roadmap, deliver the solutions, and make the case for scaling the team
  • Embed best practice into our 24/7 operations and every change project
  • Work closely with other Data leads and partner with teams across AO
  • Manage a portfolio of projects that improve how we govern data
  • Engage with stakeholders, vendors and third parties to keep our data capabilities sharp and scalable
What we offer
What we offer
  • 25 days holiday plus bank holidays (increasing to 27 days after 2 years)
  • Pension: Contribute 5% of annual salary and we'll do the same
  • Be a VIP at the AO Arena (opportunities to win free tickets and pre-sale access)
  • Health & wellbeing: discounted gym membership, onsite spa, Help @ Hand scheme (virtual GP’s, Mental Health support)
  • Discounts: exclusive discounts across our product range
  • Family leave: Enhanced Maternity, Paternity and Adoption leave
  • 2 fully paid days a year to donate time to any charity
  • On site perks: free on site parking, complimentary breakfast, subsidised in house coffee shop
  • Fulltime
Read More
Arrow Right

Data Security Governance and Compliance Lead

Barclays is seeking a Data Security Governance & Compliance Lead to provide lead...
Location
Location
United Kingdom , Knutsford
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Data Security Governance & Policy Leadership -Proven ability to define, own, and enforce enterprise‑wide data security policies, standards, and governance frameworks in a regulated environment, covering areas such as data classification, DLP, encryption, and access controls.
  • Regulatory & Risk Management Expertise- Deep understanding of data protection and security regulations (e.g. GDPR, banking regulatory standards) and the ability to demonstrate compliance through robust governance, metrics, and audit or regulator engagement.
  • Senior Stakeholder Influence & Leadership - Strong capability to influence senior executives and cross‑functional leaders (CISO, CDO, CTO, Privacy, Operations) and lead teams within a global, matrixed organisation, without relying solely on direct authority.
Job Responsibility
Job Responsibility
  • Collaboration with stakeholders to understand their security requirements in business processes and IT projects, to enhance overall risk management.
  • Execution of risk assessments to identify and prioritise potential cybersecurity threats that could impact the banks operations and data and guide the implementation of mitigation strategies and communicate findings to relevant findings to relevant senior stakeholders.
  • Collaboration with business units to develop and implement security policies and procedures for the banks operations aligned to the risk management framework.
  • Management of the implementation, testing and monitoring of security controls across the banks IT systems to ensure the effectiveness of controls and mitigation of risk.
  • Execution of training content and sessions to educate employees, enhance cybersecurity awareness and provide guidance on safe online practices.
  • Management of complex cybersecurity incidents by collaborating with IT teams and response experts to effectively resolve cases through analysis, expertise support and project supervision.
  • Identification of emerging cybersecurity trends, threats, and new technologies to address potential risks by advocating the adoption of new security solutions.
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right

Industrial Security Lead – Installation Security and Program Protection

Location
Location
United States , Huntsville
Salary
Salary:
Not provided
astrion.us Logo
Astrion
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience supporting DoD, USSF, USAF, or related federal organizations in industrial security, program protection, acquisition security, or mission assurance roles
  • BA or BS degree
  • Equivalent experience may be substituted for education requirements
  • Active DoD TS/SCI clearance with current investigation
  • Experience supporting classified programs and secure facility operations in accordance with DoD and IC security requirements
  • Knowledge of Program Protection Planning (PPP), Critical Program Information (CPI), base level security, and acquisition security processes
  • Experience supporting base-level or installation security operations, including personnel security, physical security, and classified material control
  • Familiarity with DoDI 5200.39, DoDI 5200.44, DoDM 5200.01 Volumes 1–4, NISPOM, and related security directives
  • Experience coordinating with government program offices, contractors, security managers, and engineering teams
  • Strong organizational, analytical, and communication skills with attention to detail
Job Responsibility
Job Responsibility
  • Support industrial security, program protection, and mission assurance activities for critical defense and space acquisition programs
  • Develop, review, and maintain Security Classification Guides (SCGs) in accordance with DoD policies and directives
  • Evaluate acquisition documentation with program security and Critical Program Information (CPI) protection requirements
  • Coordinate with government and contractor stakeholders to identify and mitigate risks to mission systems, technologies, and sensitive information
  • Support base-level security operations including personnel security, classified visit coordination, secure facility compliance, and physical security requirements
  • Conduct security assessments, contractor site visits, and compliance reviews to evaluate implementation of security controls and protection measures
  • Support System Security Working Groups (SSWG), program reviews, and acquisition security meetings through coordination, documentation, and action tracking
  • Analyze evolving threats, policy updates, and security directives to determine impacts to acquisition and mission systems
  • Develop written assessments, executive briefings, and security recommendations for program leadership and government customers
  • Maintain security documentation repositories, tracking matrices, and reporting tools supporting enterprise mission assurance and program protection efforts
What we offer
What we offer
  • Competitive salaries
  • Continuing education assistance
  • Professional development
  • Multiple healthcare benefits package options
  • 401K with employer matching
  • Competitive time off policy along with a federally recognized holiday schedule
  • Fulltime
Read More
Arrow Right
New

Senior Manager - Cyber Security and Compliance

We are looking for an experienced cybersecurity leader to guide security strateg...
Location
Location
United States , New York
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of experience in cybersecurity, information security leadership, compliance, or a closely related function
  • Demonstrated ability to build security roadmaps, risk management plans, and governance frameworks tied to business objectives
  • Experience presenting security strategy, metrics, and investment recommendations to executive leadership
  • Strong understanding of security architecture principles, risk mitigation methods, and performance measurement practices
  • Ability to manage both strategic initiatives and hands-on operational priorities in a fast-paced environment
  • Familiarity with technologies or environments such as Amazon Simple Queue Service (SQS), Ada, Blockchain, LAMP Stack, and React.js
  • Excellent communication skills with the ability to influence stakeholders across technical and non-technical teams
Job Responsibility
Job Responsibility
  • Create and evolve a long-range cybersecurity strategy that supports organizational goals and anticipated business needs
  • Lead enterprise risk reviews on a recurring basis, identify the most critical exposures, and develop prioritized remediation approaches
  • Set the direction for security architecture by defining target-state capabilities and mapping phased adoption plans
  • Develop meaningful security measurements and reporting tools that provide leadership with clear visibility into performance and risk posture
  • Prepare and deliver recommendations to senior stakeholders, translating security priorities into business value, investment rationale, and actionable plans
  • Manage competing priorities by balancing strategic security programs with immediate operational and compliance requirements
  • Oversee annual security budget planning, including resource forecasting and justification for technology, staffing, and program investments
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right

Governance Risk and Compliance Lead

Location
Location
United Kingdom , London
Salary
Salary:
95000.00 GBP / Year
hunterbond.com Logo
Hunter Bond
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong GRC background
  • Governance, Risk and Compliance background
  • Experience in conducting risk assessments
  • PCI DSS, ISO 27001, NIS 2 and the UK telecom Security Act
  • Good understanding of Telecom security threats
  • Excellent communication skills
What we offer
What we offer
  • bonus
  • Fulltime
Read More
Arrow Right

It Security & Compliance Lead (Healthcare) - Administration

Premium Health’s Information Technology (IT) department is based in our Administ...
Location
Location
United States , Brooklyn
Salary
Salary:
Not provided
premiumhealth.org Logo
Premium Health
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in IT security, compliance, or risk management
  • Experience in healthcare or regulated environments (HIPAA strongly preferred)
  • Experience managing or supporting security programs, audits, and compliance initiatives
  • Strong understanding of identity and access management, vendor risk, and security controls
  • Ability to work cross-functionally and translate security requirements into practical processes
  • Hands-on experience administering or supporting security technologies and operational controls, including areas such as identity and access management, endpoint protection, email security, MFA/conditional access, DLP, or SaaS security administration
Job Responsibility
Job Responsibility
  • Own and operate the organization's security program, ensuring policies, procedures, and controls are consistently implemented
  • Maintain and update security policies, standards, and procedures
  • Ensure alignment with regulatory and organizational requirements
  • Support ongoing maturation of the organization's security posture and controls framework, including alignment with industry-standard practices such as NIST
  • Stay current on emerging cybersecurity threats, vulnerabilities, technologies, AI-related risks, and evolving industry best practices
  • Administer and support security technologies and operational controls across the environment, including email security, endpoint protection, identity and access management, MFA, conditional access, DLP, and firewall/security platforms
  • Configure, tune, monitor, and maintain security rules, alerts, policies, and protections across Microsoft 365, SaaS, endpoint, and network security platforms
  • Support email security administration, including phishing protection, impersonation protection, quarantine management, and coordination of SPF/DKIM/DMARC-related controls
  • Coordinate and manage phishing simulations, user remediation, and security awareness follow-up activities
  • Support SaaS application governance and review of third-party application access, permissions, and security risks
What we offer
What we offer
  • Paid time Off
  • Medical
  • Dental and Vision plans
  • Retirement plans
  • Public Service Loan Forgiveness (PSLF)
  • Fulltime
Read More
Arrow Right

Senior E2e Network Security And Compliance

As a Senior Manager Network Strategy and Architecture, you will be responsible f...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep expertise in network security architecture and strategy across fixed and mobile networks
  • Strong understanding of regulatory frameworks and industry standards (3GPP, GSMA, ETSI)
  • Proven experience in risk management, compliance, and audit processes
  • Familiarity with network technologies and their security implications, including legacy and next-gen platforms
  • Skill in vendor engagement and security solution evaluation
  • Ability to influence senior stakeholders and collaborate across technical and commercial teams
  • Comfortable operating in complex, fast-changing environments with high accountability
Job Responsibility
Job Responsibility
  • Define and drive VodafoneThree’s network security strategy across all network domains
  • Strengthen resilience, ensure compliance, and reduce risks by working closely with engineering and security teams
  • Develop and maintain the end-to-end Network Security Strategy and Architecture, covering RAN, Fixed, and Transport domains
  • Lead risk management activities, including identification of risk owners, remediation planning, and governance reporting
  • Embed security and resilience requirements into high-level architectures (HLAs) and designs for all network layers
  • Support delivery of VF3 Network Zoning architecture compliance and ensure delivery of Charm Requirements across Network
  • Work with OSS and other teams to leverage or introduce existing processes and tools for Life Cycle Management
  • Conduct network security audits and assessments, driving continuous improvement and adherence to best practices
  • Perform impact assessments for new products and services, ensuring security requirements are integrated into solution designs
  • Work with key stakeholders to maintain the Service Continuity reference document and carry out necessary tests
What we offer
What we offer
  • Great pay
  • bonuses
  • up to 28 days off plus bank holidays
  • paid time for charity work
  • discounts
  • vouchers
  • pension plan
  • learning tools
  • parental leave policies
  • Fulltime
Read More
Arrow Right

Group Product Manager, Security and Compliance

Crusoe is on a mission to align the future of computing with the future of the c...
Location
Location
United States , San Francisco; Sunnyvale
Salary
Salary:
237000.00 - 288000.00 USD / Year
crusoe.ai Logo
Crusoe
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of Product Management experience, with a strong focus on cloud security, infrastructure platforms, or DevSecOps
  • Strong understanding of cloud infrastructure and security concepts, including Kubernetes security, cloud networking, and the evolving security challenges of LLMs and Generative AI
  • Proven experience navigating SOC 2
  • familiarity with HIPAA and FedRAMP is a strong plus
  • Comfort operating in an early-stage, high-growth environment and building product processes from scratch
  • Ability to deeply understand customer needs and advocate for them across technical and non-technical stakeholders
  • Strong written and verbal communication skills, with experience influencing senior leaders and executives
  • Highly proactive, self-directed, and decisive, with strong product judgment
  • Bachelor’s degree in Computer Science or a related technical field (or equivalent practical experience)
  • Genuine passion for Crusoe’s climate mission and sustainable infrastructure goals
Job Responsibility
Job Responsibility
  • Serve as the architect of trust across the Crusoe Cloud platform
  • Own the end-to-end security and compliance product strategy—from physical data center controls to managed AI inference APIs
  • Build security guardrails for the full model lifecycle, ensuring customer data privacy, isolation, and secure execution environments for managed inference workloads
  • Lead the product side of major compliance initiatives (SOC 2 Type II required
  • ISO 27001, HIPAA, and eventually FedRAMP)
  • Develop customer-facing security documentation, trust centers, and compliance artifacts
  • Collaborate closely with Engineering, DevOps, SRE, Legal, Finance, Customer Success, and executive stakeholders to define requirements, execution plans, and operating models
  • Engage directly with current and prospective customers to understand real-world security and compliance needs and translate them into scalable product solutions
What we offer
What we offer
  • Restricted Stock Units in a fast growing, well-funded technology company
  • Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents
  • Employer contributions to HSA accounts
  • Paid Parental Leave
  • Paid life insurance, short-term and long-term disability
  • Teladoc
  • 401(k) with a 100% match up to 4% of salary
  • Generous paid time off and holiday schedule
  • Cell phone reimbursement
  • Tuition reimbursement
  • Fulltime
Read More
Arrow Right