Director of IT, Information Security & Data Privacy

We are seeking a hands-on, strategic, and operationally strong Director of IT, Information Security & Data Privacy to lead and scale our internal technology, cybersecurity, and data privacy functions. This leader will oversee the company’s IT infrastructure, security operations, compliance initiatives, and privacy programs while building a high-performing team that supports a fast-paced, high-growth SaaS environment.

The ideal candidate requires deep technical expertise, strong leadership capabilities, and experience navigating the challenges of scaling systems, processes, and security practices in a growing SaaS organization. This role requires a balance of strategic thinking and hands-on execution.

• Lead the company’s IT strategy, operations, and roadmap across infrastructure, endpoint management, collaboration tools, and enterprise applications
• Manage and mentor a high-performing IT and security team, fostering accountability, growth, and operational excellence
• Oversee help desk operations and end-user support to ensure a high-quality employee experience
• Drive scalability, automation, and operational maturity across IT systems and processes
• Manage vendor relationships, software licensing, hardware procurement, and IT budgets
• Ensure business continuity, disaster recovery, and operational resilience plans are maintained and tested

• Develop, implement, and continuously improve the organization’s cybersecurity strategy and security posture
• Lead security operations including identity and access management, endpoint security, vulnerability management, threat detection, incident response, and security monitoring
• Partner with engineering and product teams to strengthen cloud and application security practices
• Maintain and improve security frameworks, policies, standards, and controls aligned with industry best practices
• Lead security awareness and training initiatives across the organization
• Manage vendor and third-party security assessments, audits, and customer security questionnaires

• Own and evolve the company’s data privacy and governance programs
• Ensure compliance with applicable regulations and frameworks including SOC 2, GDPR, CCPA, and other evolving privacy/security standards
• Partner with legal, HR, engineering, and business stakeholders to operationalize privacy and compliance requirements
• Support customer, partner, and enterprise security assessment and due diligence efforts

• Serve as a trusted advisor to executive leadership on IT, cybersecurity, risk, and privacy matters
• Influential leader who builds trust and collaborates effectively across technical and business functions
• Assess emerging technologies and risks to support business growth and innovation
• Build scalable processes and controls appropriate for a rapidly growing SaaS organization
• Establish KPIs, metrics, and reporting for IT and security operations

• Experience supporting remote or hybrid work environments
• Familiarity with modern SaaS ecosystems including Microsoft 365, Google Workspace, Okta, JAMF, Intune, AWS/Azure, and cloud security platforms
• Security certifications such as CISSP, CISM, or similar are a plus
• Experience with M&A integration, scaling operations, or rapid organizational growth preferred

• 10+ years of progressive IT and information security leadership experience, including 5 + years with director and/or senior-level responsibility
• Proven experience leading IT and security functions within a fast-paced, high-growth SaaS or cloud-native company
• Strong hands-on technical background across cloud infrastructure, networking, identity management, endpoint management, and security operations
• Demonstrated success building, mentoring, and leading high-performing technical teams
• Deep understanding of cybersecurity frameworks, risk management, and security best practices
• Demonstrated success leading the achievement, maintenance, and continuous improvement of ISO 27001, SOC 2, and related security/compliance programs
• Experience implementing and managing modern security tooling and processes in cloud environments
• Strong project management, communication, organizational, and cross-functional collaboration skills

• Hands-on leader who can operate strategically while remaining close to day-to-day execution
• Strong communicator with the ability to influence technical and non-technical stakeholders
• Calm and decisive under pressure with strong incident management skills
• Collaborative, pragmatic, and solutions-oriented mindset
• Passion for building scalable, secure, and efficient systems that enable business growth

About Energage: 

Energage is a purpose-driven company that helps organizations turn employee feedback into useful business intelligence and credible employer recognition through Top Workplaces. Built on 19 years of culture research and the results from 23 million employees surveyed across more than 70,000 organizations, Energage delivers the most accurate competitive benchmark available. With access to a unique combination of patented analytic tools and expert guidance, Energage customers lead the competition with an engaged workforce and an opportunity to gain recognition for their people-first approach to culture. For more information or to nominate your organization, visit energage.com or topworkplaces.com. 

Energage is committed to fostering a diverse and inclusive environment. We are proud to be an equal opportunity employer. Energage encourages all qualified candidates to apply, including those of any race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.