FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.

IT Security & Compliance Lead
Wordsmith AIIT Security & Compliance Lead building security functions for a legal tech company. Hands-on role managing IT security, compliance, and incident response as part of scaling operations.
Core Competencies
Role fitCore Competencies
Use this summary to align your resume positioning with the role.
Demonstrates expertise in building IT security functions, managing device and identity access, and leading security incident response. Proficient in SOC 2 and ISO 27000 series compliance, with strong cross-functional collaboration skills across IT, Security, Engineering, and GTM teams.
Highest-signal resume keywords
IT Security OperationsSecurity Incident ResponseSOC 2 ComplianceISO 27001/27017/27018Identity and Access Management
ATS Keywords
Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills
Device ManagementIdentity Access ManagementCloud Infrastructure SecuritySecurity Tooling EvaluationIncident InvestigationPost-Incident ReviewPolicy DesignAudit Evidence ManagementCross-Functional CollaborationPrivacy Regulation Knowledge
Soft Skills
Cross-Functional OperatorCommunication
Tools & Technologies
MDM PlatformsIAM ToolingEDR PlatformsDLP PlatformsSIEM PlatformsJamfIntuneOktaAWSVanta
Certifications & Qualifications
CISSP/ISC2CCSKCIPP/EAIGP
Industry Keywords
SaaSLegal TechAI GovernanceGDPRISO 42001
Tech Stack
Tools & technologiesAWSCloudJamf
About the role
Key responsibilities & impact- You'll build our IT security function from the ground up — covering device management, identity and access, infrastructure controls, and incident response.
- Lead security incident response — full lifecycle investigations, coordinating with internal teams and external partners (e.g. SOCaaS providers), and running post-incident reviews and tabletop exercises.
- Own SOC 2 Type II and ISO 27001/27017/27018 end-to-end, from policy design through to audit evidence and the audits themselves.
- Partner with Sales, Customer Success, and Legal to support enterprise deals — security questionnaires, DPAs, and contract terms — without slowing the business down.
Requirements
What you’ll need- Experience running IT security operations at a fast-growing SaaS company, including device management and identity and access management.
- Hands-on experience with MDM platforms such as Jamf or Intune.
- Hands-on experience with IAM tooling (e.g. Okta) and cloud infrastructure security (e.g. AWS).
- Experience leading security incident response, from investigation through to post-incident review.
- Working knowledge of SOC 2 and the ISO 27000 series.
- Comfortable evaluating and operating security tooling such as EDR, DLP, or SIEM platforms.
- A strong cross-functional operator, comfortable bridging IT, Security, Engineering, and GTM teams.
- Exposure to privacy regulation (e.g. GDPR) and AI governance frameworks (e.g. ISO 42001).
- Relevant certifications — e.g. CISSP/ISC2, CCSK, CIPP/E, or AIGP.
- Experience in legal tech, AI, or another highly regulated SaaS environment.
- Familiarity with tools such as Vanta, Crowdstrike, Zscaler, Datadog, or Whistic.
Benefits
Comp & perks- The chance to build an IT security function from the ground up, with real ownership over how it's shaped.
- Close collaboration with Engineering, Legal, and GTM in an environment where your work has visible, immediate impact.