Director of Security

Lead the Future of Dentistry. Overjet is the world‑leader in dental AI. Already, thousands of dental providers and insurers rely on our platform to deliver the best possible care. Now, we’re looking for talented people to fulfill our mission: improve oral health for all.

As Director of Security at Overjet, you will be the owner of our security and technology operations — leading the charge to protect the category‑creating AI platform in dental health, where data integrity and patient privacy are mission‑critical. You’ll set the strategic vision and own execution across our modern, cloud‑native stack on GCP, containerized with Docker, deployed via CICD pipelines, and spanning Python, Node.js,

and Go services — while also overseeing the IT infrastructure and operations that keep Overjet running day‑to‑day.

This is a high‑impact leadership role at the intersection of strategy and execution. Over time, you’ll build and manage a team of security engineers and IT professionals, partnering closely with Engineering, Product, Legal, and Compliance to embed security and operational excellence throughout the organization — not as an afterthought, but as a competitive advantage.

• Define and own Overjet’s security strategy, roadmap, and risk posture across the full SDLC — spanning hardened Docker image policies, secrets management via GCP Secret Manager, dependency locking, and secure CI/CD pipeline configuration in Google Cloud Build
• Lead the company’s vulnerability management program — overseeing triage of findings from container scanning, SAST/DAST tooling, and dependency audits across Python, Node.js, and Go services
• Serve as the owner of HIPAA compliance from a technical and operational standpoint, including access control reviews, audit logging, encryption at rest and in transit, and BAA management
• Partner with Engineering and Product leadership to integrate threat modeling and security design reviews into the product development lifecycle
• Build and mature Overjet’s detection and response capabilities — establishing alerting thresholds, incident response playbooks, and runbooks appropriate for a cloud‑native environment
• Oversee security automation strategy, including pre‑commit hooks, CI secret scanning (e.g., Trufflehog, detect‑secrets), and policy‑as‑code initiatives
• Champion a security‑first culture company‑wide through developer enablement programs, training, and pragmatic guidance that helps teams ship fast without cutting corners

• 8+ years of experience in security engineering, with at least 3 years in a leadership role managing teams in a health tech, SaaS, or similarly regulated environment
• Proven ability to set strategic direction and drive execution across the security function
• Deep expertise in container security, GCP environments (IAM least‑privilege design, VPC controls, GCP Secret Manager, Cloud Build hardening), and cloud‑native architectures
• Strong command of HIPAA security requirements and a track record of translating compliance obligations into scalable engineering and operational controls
• Proficiency in at least one language in our stack (Python, Node.js, or Go) and the ability to conduct meaningful security code reviews across all three
• Demonstrated experience building and scaling security programs — including secret scanning, dependency vulnerability management, and CICD security integration
• Exceptional communication skills — equally capable of presenting risk to the leadership team, writing a security policy, and pairing with an engineer on a remediation

• Competitive Compensation and Equity
• Hybrid workplace that provides flexibility, vibrant in‑person work spaces, and the ability to build strong connections across all of Overjet — regardless of location
• 401k plans with a matching program
• Medical, Dental and Vision coverage: 99% employee premium covered, 75% dependent premium covered
• Life and AD+D Insurance
• 8 weeks Paid Parental Leave
• Optional HSA with Employer contribution
• Flexible Time Off and company paid holidays
• Annual Learning and Development Stipend

We have a unique hybrid workplace at Overjet — which combines the teamwork of…