×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security

Chief Security & Data Integrity Lead

Job in New City, Rockland County, New York, 10956, USA
Listing for: Protege
Full Time position
Listed on 2026-05-29
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security
Salary/Wage Range or Industry Benchmark: 125000 - 150000 USD Yearly USD 125000.00 150000.00 YEAR
Job Description & How to Apply Below

Company Overview:

We are building Protege to solve the biggest unmet need in AI — getting access to the right training data. The process today is time intensive, incredibly expensive, and often ends in failure. The Protege platform facilitates the secure, efficient, and privacy-centric exchange of AI training data.

Solving AI’s data problem is a generational opportunity. We’re backed by world-class investors and already powering partnerships with some of the most ambitious teams in AI. The company that succeeds will be one of the largest in AI — and in tech.

We’re a lean, fast-moving, high-trust team of builders who are obsessed with velocity and impact. Our culture is built for people who thrive on ambiguity, own outcomes, and want to shape the future of data and AI.

Purpose

We're hiring our first Head of Security & IT to own security end-to-end: strategy, architecture, operations, and culture. This is a hands-on leadership role and you won't have a large team beneath you (yet), so you need to be comfortable building the program from the ground up while still getting into the technical weeds. You'll report directly to the VP of Engineering and work closely with engineering, product, and legal.

This is a high-impact role where you'll shape how we earn and keep the trust of AI companies and our data partners.

What You’ll Do:

  • Mature the Security & Compliance Program

    • Audit and improve the existing security program by identifying gaps, prioritizing improvements, and bringing more structure to what exists.

    • Formalize security policies and frameworks appropriate for our stage

    • Own and evolve our compliance posture. We have SOC 2 Type II in place and you'll maintain it, improve our controls, and provide automation wherever needed

    • Ensure compliance with HIPAA and other healthcare data regulations, and build a robust PHI protection program

  • Protect the Data Pipeline

    • Secure the end-to-end lifecycle of training data which includes ingestion, processing, storage, preparation, and delivery

    • Partner with engineering to embed security into CI/CD pipelines, cloud infrastructure, and data workflows

  • Be Technical and Hands-On

    • Conduct threat modeling, architecture reviews, and code-level security assessments

    • Lead incident response when things go wrong

    • Evaluate and deploy security tooling

  • Enable the Business

    • Translate security risks into business language for the executive team and board

    • Serve as the security face to customers, fielding security questionnaires, supporting sales cycles, and building trust with AI company partners and customers

    • Build a security-aware culture across the company through training and lightweight processes that don't slow teams down

  • Scale the Function

    • Decide what to build, what to buy, and what to outsource

    • Set the roadmap for how security evolves from Series A through a rapid growth stage

What Success Looks Like:

  • 30 days:
    Learn and Assess

    • Complete a thorough audit of the existing security program, infrastructure, tooling, and policies

    • Meet with every team lead to understand their workflows, data handling practices, and where security creates friction or blind spots

    • Review our SOC 2 Type II and HIPAA controls and identify areas where we're passing but brittle vs. areas that are solid

    • Map the full training data lifecycle end-to-end from a security and risk perspective

  • 60 days:
    Prioritize and Start Building

    • Present a security roadmap with quick wins (first 90 days) and longer-term initiatives (6–12 months), tied to business risk, not just best practices

    • Close the highest-severity gaps identified in your assessment

    • Upgrade incident response program

    • Establish yourself as the go-to security partner for engineering

    • Identify the highest-leverage automation opportunities

  • 90 days:
    Fully Own

    • You've taken full ownership of our SOC 2 compliance cycle and have a plan for any additional certifications or frameworks the business needs

    • You've fielded at least one customer security review or questionnaire and can represent our posture confidently to prospects

    • The team sees security as an enabler, not a bottleneck

    • At least one meaningful security workflow has been automated

    • The security roadmap is in execution with measurable progress

What You…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search