We\'re a late-stage AdTech company with strong internal alignment on security, a recently attained SOC 2 Type II attestation, and a clear mandate to mature our security and privacy posture.
We\'re looking for the right leader to make it happen.
The Role:You\'ll lead our existing Security Engineering team, reporting to the SVP of Engineering and work closely with Engineering leadership to develop a deep understanding of our AWS-based SaaS platform and operational environment, then build and execute the roadmap to meet, and exceed, industry security standards.
This is a hands-on leadership role of a small but talented Security team. You\'ll set strategy, grow your team, and drive hands-on technical execution when necessary.
Responsibilities:- Build and execute Tatari\'s security roadmap across application, infrastructure, and corporate security
- Own incident response end-to-end (detection, containment, communication, post-mortem), and serve as the Security representative to executives
- Own detection and monitoring across our AWS environment
- Run our risk management program (intake, triage, acceptance, reporting), ensuring leadership receives clear and actionable visibility into our risk posture
- Lead our Security Policy Advisory Group and develop internal policies, external-facing documentation, and security training
- Partner with Legal on our privacy program as it evolves to meet AdTech-specific obligations (CCPA and other US state privacy laws)
- Partner with Engineering teams to enable seamless integration of security best practices throughout the development lifecycle
- Own customer-facing security: questionnaires, due diligence, compliance attestations, and security review calls
- Report up to exec staff and board on posture, incidents, and program maturity
- Manage relationships with external cybersecurity vendors
Qualifications:- Meaningful time leading information security teams at a high-growth SaaS company
- Strong AWS and Kubernetes security expertise (IAM, networking, data protection, and threat detection)
- Led incident response, including stakeholder communication and post-mortems
- Built or significantly scaled a security risk management program
- Track record of hiring, developing, and retaining security engineers
- Broad knowledge across application, infrastructure, and corporate security, with deep expertise in multiple areas
- Succeeded in leading security programs through SOC 2 and additional frameworks
- Hands-on use of AI in security workflows (threat detection, vulnerability management, security automation), including working knowledge of how LLMs introduce new attack surfaces
- Industry-recognized security certifications (e.g., CISSP, CISM) are a plus
Benefits: - Total compensation ($200,000-$250,000)
- Equity compensation
- Health insurance coverage for you and your dependents
- 401K, FSA, and commuter benefits
- $150 monthly spending account
- $1,000 annual continued education benefit
- $500 Newbie Productivity Perk
- Unlimited PTO and sick days
- Monthly Company Wellness Day Off
- Snacks, drinks, and catered lunches at the office
- Team building events
- Hybrid RTO of 2 days per week in office
#LI-HYBRID
