Filevine logo
Filevine

The Operating Core for Legal

Head of Trust and Security

Security EngineerSecurity EngineerFull TimeRemoteLeadTeam 201-500H1B SponsorCompany SiteLinkedIn

Location

United States

Posted

6 hours ago

Salary

$190K - $210K / year

Seniority

Lead

Bachelor Degree10 yrs expEnglishCloud

Job Description

Head of Trust and Security

Filevine

• Own Filevine’s FedRAMP 20x Moderate strategy, delivery plan, certification readiness, and ongoing compliance posture. • Lead the design and execution of FedRAMP evidence automation, continuous monitoring, and reporting required for Marketplace certification and sustained authorization. • Serve as the single-threaded owner for FedRAMP engagements with 3PAOs, the FedRAMP PMO, agency stakeholders, and internal executive sponsors. • Set the roadmap and priorities for dedicated FedRAMP engineering resources, ensuring regulatory requirements become shipped technical controls, automated evidence, and operationally sustainable processes. • Own POA&M governance, risk acceptance workflows, certification readiness reporting, and remediation planning across product and platform teams. • Ensure FedRAMP implementations are pragmatic, risk-based, technically grounded, and appropriately scoped for Filevine’s architecture, maturity, and business priorities. • Provide clear, consistent executive reporting on progress, risk, tradeoffs, dependencies, resourcing needs, and certification readiness. • Drive governance for vulnerability findings from scanning tools, penetration tests, customer reviews, audits, and bug bounty programs, including risk adjustment, remediation ownership, escalation, and executive tradeoff decisions. • Maintain a single source of truth for security/compliance status, control gaps, remediation commitments, and customer-facing trust claims. • Ensure trust center materials, customer security responses, sales enablement messaging, and public compliance claims are accurate, current, and defensible. • Translate privacy obligations and customer commitments into product, engineering, and operational requirements. • Support AI and data governance efforts by ensuring privacy, security, and customer trust requirements are reflected in product and operational decisions. • Drive alignment between compliance goals, engineering capacity, product strategy, customer commitments, and business risk.

Job Requirements

  • Bachelor’s degree or equivalent practical experience.
  • 10+ years of experience in security compliance, GRC, product/program leadership, privacy, trust, or related roles within SaaS, cloud, or high-trust technology environments.
  • Direct ownership of FedRAMP Moderate, FedRAMP High, FedRAMP 20x, or a comparable federal cloud authorization program.
  • Proven experience translating regulatory, security, and privacy requirements into technical implementation plans with engineering teams.
  • Experience leading complex, cross-functional initiatives with executive visibility, ambiguous requirements, and multi-quarter delivery timelines.
  • Experience partnering with security engineering, infrastructure, product, legal, audit, and customer-facing teams.
  • Deep knowledge of FedRAMP, NIST 800-53, FedRAMP 20x automation concepts, continuous monitoring, POA&M governance, 3PAO engagement, and federal cloud authorization workflows.
  • Strong working knowledge of security and compliance frameworks such as SOC 2, ISO 27001, HIPAA, PCI-DSS, and customer security review processes.
  • Strong working knowledge of privacy operations, consent management, data governance, DSR workflows, subprocessors, DPAs, retention, and privacy-by-design practices.
  • Ability to translate regulatory and security requirements into actionable, value-driven product and engineering work.
  • Strong product and program management expertise, including roadmap development, prioritization, milestone definition, and executive reporting.
  • Pragmatic, analytical approach to risk management and decision-making in fast-paced environments.
  • Excellent stakeholder management, written communication, and executive presence.
  • Comfort operating with dedicated engineering resources while remaining accountable for prioritization, clarity, outcomes, and risk-based tradeoffs.

Benefits

  • Medical, Dental, & Vision Insurance (for full-time employees)
  • Competitive & Fair Pay
  • Maternity & paternity leave (for full-time employees)
  • Short & long-term disability
  • Opportunity to learn from a dedicated leadership team
  • Top-of-the-line company swag

Related Categories

Related Job Pages

More Security Engineer Jobs

Full TimeRemoteTeam 10,001+H1B No Sponsor

• Collaborate within the security engineering team to design and implement security tooling. • Design, build, and maintain AWS cloud infrastructure using Infrastructure as Code (Terraform). • Create and support CI/CD pipelines using GitHub Actions to enable reliable, automated deployments. • Collaborate with engineering teams on architecture, reliability, and continuous improvement. • Partner with software development teams to ensure effective adoption of security tools. • Implement monitoring, logging, and alerting to improve system reliability and visibility. • Support resilience through capacity planning, performance tuning, disaster recovery, and runbooks. • Troubleshoot issues efficiently and communicate outcomes clearly. • Deliver production-ready systems on time and within budget.

United Kingdom
GameChanger logo

Director, Information Security – Technology

GameChanger

Helping families elevate the next generation through sports. A part of the DICK’S Sporting Goods family.

Full TimeRemoteTeam 51-200Since 2016H1B No Sponsor

• Own and evolve GameChanger's multi-year security and technology strategy, including prioritization, resourcing decisions, alignment to business and parent company goals, and communication of security investments and tradeoffs to technical and executive leadership. • Lead, mentor, and grow a team of security and technology operations professionals, including setting priorities, coaching teammates, managing performance, creating opportunities for growth and impact, and creating an environment to support autonomy and ownership. • Own the direction and delivery for all key areas of information security, including product and application security, cloud security, AI security, security operations, vulnerability management, and governance, risk, and compliance functions. • Evaluate and mitigate risks across infrastructure, product, and corporate environments. • Set direction for AI security and governance as part of a secure SDLC and corporate environment, including the secure adoption of AI tooling, the security of AI-enabled product features, and AI usage governance, partnering with AI enablement and governance stakeholders across the company. • Lead the governance, risk, and compliance program, including internal assessments (for example, NIST CSF 2.0), external assessments, and clear risk reporting to leadership. • Own the security operations and incident response program for the GameChanger environment, including detection, on-call, escalation, and coordination with our parent-company security function. • Own internal technology operations, including the technology support function for our remote-first workforce and the systems and endpoints employees rely on to do their work. • Manage the BISO relationship with DSG, including decision rights, shared-services integration, and the partnership with the DSG CISO. • Lead the cross-departmental security steering committee and represent security and technology in executive forums, building alignment and buy-in for key initiatives. • Educate and influence the broader company on security principles, threats, and practices.

Alaska + 7 moreAll locations: Alaska | Hawaii | Iowa | Louisiana | Montana | Oklahoma | Mississippi | South Carolina
$220K - $240K / year
CBIZ logo

Lead Security Engineer

CBIZ

Trusted local advisors enhanced by specialists nationwide. (NYSE: CBZ)

Full TimeRemoteTeam 10,001+Since 1996H1B Sponsor

• The Lead Security Engineer (Cloud & Enterprise Security Engineering) is responsible for designing, implementing, hardening, integrating, and continuously improving security technologies across varied domains. • Translate security requirements into scalable and reliable technical solutions. • Engineer secure-by-default solutions, improve platform capabilities, automate security functions, and drive long-term technical maturity. • Own complex technical initiatives from design through implementation, support, optimization, and documentation. • Create and maintain actional documentation including architecture diagrams, standards, SOPs, and runbooks.

New York
$111K - $180K / year
CampMinder logo

Senior Cybersecurity Engineer

CampMinder

Summer Camp Management Software

Full TimeRemoteTeam 51-200Since 2001H1B No Sponsor

Role Description This role’s mission & overview: Camps trust Campminder to keep their data safe, and that trust is what lets them focus on running a great summer. You'll own how we protect that data end to end: - Architecting and hardening our security infrastructure - Carrying our PCI and SOC2 programs through every audit - Setting the roadmap that keeps us ahead of real threats - Being the person the engineering org comes to on security - Defining what good looks like at Campminder As a Senior Cybersecurity Engineer on our Engineering team, you will: - Manage identity and access infrastructure, including Azure conditional access, Okta SSO, and Auth0, keeping MFA and zero-trust enforced across production and internal apps - Integrate security scanning (SAST, DAST, SCA) into CI/CD pipelines and drive remediation before code reaches production - Configure, tune, and harden WAF rules across our web applications - Own vulnerability scanning and remediation using tools like Mondoo and SecurityMetrics, and administer EDR, DLP, and SIEM/XDR tooling across servers and endpoints - Manage secrets and credentials in build pipelines, including vault-based storage, rotation, and least-privilege service accounts - Execute PCI technical controls: SAQ completion, quarterly ASV scans, and disaster recovery implementation - Harden containerized and cloud-native environments, including image scanning and Kubernetes configuration - Coordinate pen testing engagements and drive remediation against SLA timelines - Run security awareness training programs (KnowBe4, Security Journey) and maintain AI usage oversight, including approved tooling, code-gen governance, and supply-chain monitoring Qualifications - 5+ years in security engineering or DevSecOps, with hands-on ownership of both pipeline-level and infrastructure-level security - Experience configuring IAM and SSO platforms (Okta, Auth0) alongside cloud-native identity controls like Azure conditional access - Comfort embedding security directly into CI/CD workflows: SAST/DAST/SCA tooling, secrets management, and policy-as-code - A track record hardening containerized and cloud-native environments, including Kubernetes and image scanning - Experience executing PCI or similar compliance technical controls (scans, SAQs, evidence prep); program ownership isn't required, but you know how to translate auditor requirements into engineering work - Familiarity administering SIEM/XDR and EDR/DLP tooling - The judgment to triage real vulnerabilities over theoretical ones, and to know when to escalate versus fix directly - Experience running or supporting security awareness and training programs - Exposure to AI tooling governance, such as MCP inventories, code-gen release gating, or supply-chain monitoring for AI-assisted development Benefits - Robust medical, dental, and vision coverage options with generous employer contributions, plus a $500 employer HSA contribution for HSA-compatible plans - Ability to choose where you work - remotely, in the office, or a mix! - A variety of resources to support mental health and emotional well-being - 12 weeks of 100% paid parental leave for all new parents, including via adoption, surrogacy, and foster care - 401(k) with 4% company matching - Trust-Based (flexible) PTO (and yes, we use it!) - $900/year wellness allowance - Company-paid subscriptions, training, and support for using AI professionally and personally Company Description We know the best people can choose to work anywhere. Here’s a few reasons why 100+ of them choose Campminder: - With 20+ years experience of serving the industry through its digital transformation, we’re stable, profitable, and have developed a loyal customer base (that continues to grow). - We build software for summer camps, an industry that enables meaningful experiences for kids. - We work on interesting, ambitious projects that create real value for our clients. - We know our team members feel their work has an impact on the organization’s purpose. - We are genuinely committed to work/life balance. - We invest in emerging technology and cutting-edge leadership and are proud to take an "AI-Enabled" approach in our solutions. - We’ve been listed on Outside Magazine’s 50 Best Places to Work for 8 consecutive years for our values-led culture and employee experience.

United States
$180K - $198K / year