Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Collectors

Director of Information Security

Collectors

Information Security Director at Collectors leading the security program across various domains. Collaborating with cross-functional teams to prioritize risks and enhance security practices across the organization.

Posted 7/17/2026full-timeJersey City • New Jersey • 🇺🇸 United StatesLead💰 $212,000 - $312,000 per yearWebsite

Core Competencies

Role fit
Core Competencies

Use this summary to align your resume positioning with the role.

Demonstrates extensive expertise in leading information security programs across application security, cloud security, security operations, and governance, risk, and compliance (GRC). Proven ability to operationalize security strategies, manage cross-functional teams, and drive metrics-oriented outcomes in a collaborative environment.

Highest-signal resume keywords
Information Security LeadershipSecurity Operations ManagementCloud Security ExpertiseGovernance Risk Compliance (GRC)Incident Response and Threat Intelligence

ATS Keywords

Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills
Application SecurityCloud SecuritySecurity OperationsIncident ResponseVulnerability ManagementRisk AssessmentSecurity MetricsSOC MaturityCI/CD PipelinesContainer Security
Soft Skills
Collaborative CommunicationPeople LeadershipStrategic PartnershipCulture BuildingClear Communication
Tools & Technologies
AWSAzureGCPSecurity Information and Event Management (SIEM)Code Analysis Tooling
Certifications & Qualifications
SOC 2ISO 27001NIST CSFHITRUST
Industry Keywords
Security RoadmapThreat LandscapeAudit CoordinationRegulatory ComplianceSecurity Guardrails

Tech Stack

Tools & technologies
AWSAzureCloudGoogle Cloud PlatformSDLC

About the role

Key responsibilities & impact
  • Lead the information security program across application security, cloud security, security operations, and GRC, serving as the operational leader responsible for refining and driving the information security roadmap into executed outcomes.
  • Own the security operations function, including detection and response, threat intelligence, incident management, and SOC maturity, ensuring the organization can rapidly identify, contain, and recover from security events.
  • Drive the application security program, embedding secure development practices, code analysis tooling, and vulnerability management into the SDLC in close partnership with product and platform engineering teams.
  • Establish and mature cloud security capabilities, defining and enforcing security standards across cloud environments including architecture review, configuration management, workload protection, and cloud-native detection and response.
  • Oversee governance, risk, and compliance activities, including regulatory and framework alignment (SOC 2, ISO 27001, NIST, HITRUST, or similar), risk assessment processes, policy lifecycle management, and audit coordination.
  • Partner with Internal Platform teams to define and implement appropriate security guardrails within the environment.
  • Build and maintain the organization's security risk register, providing the stakeholders with clear, data-informed visibility into the threat landscape, control gaps, and residual risk across the enterprise.
  • Collaborate cross-functionally with engineering, IT, legal, and privacy stakeholders to embed security into organizational processes and decision-making rather than operating as a gatekeeping function.
  • Define and track security KPIs and program metrics — such as mean time to detect/respond, vulnerability remediation SLAs, and compliance posture — to measure program effectiveness and define target risk postures across applications.
  • Lead, develop, and scale a high-performing security organization, managing team leads across multiple disciplines, investing in professional development, and building a culture that balances security rigor with operational pragmatism.

Requirements

What you’ll need
  • An experienced security leader with 10+ years in information security, including 5+ years leading security teams across multiple disciplines and at least 2+ years managing managers or cross-functional security functions.
  • Broad and deep across the security domain. You've built or matured programs spanning AppSec, CloudSec, SecOps/IR, and GRC — and you're comfortable operating across all of them without losing depth in any single area.
  • Strong in security operations and incident response. You've led or directly overseen SOC teams, detection engineering, and incident response processes, and you understand what it takes to build a mature, metrics-driven detection and response capability.
  • Technically credible in cloud and application security. You have hands-on familiarity with securing cloud environments (AWS, Azure, or GCP), modern application architectures, CI/CD pipelines, and container-based workloads, and you can engage meaningfully with engineering teams on technical trade-offs.
  • Well-versed in governance and compliance frameworks. You've led organizations through SOC 2, ISO 27001, NIST CSF, HITRUST, or similar frameworks and can manage audit cycles and regulatory requirements without letting compliance become the sole definition of security.
  • A strategic partner to the CISO. You're skilled at operationalizing security strategy, translating executive-level priorities into roadmaps and team-level execution, and surfacing risk with clarity and context.
  • Collaborative by default. You build productive relationships with engineering, IT, legal, and privacy teams, and you approach security as an enabling function rather than a blocker — while still holding firm on non-negotiable standards.
  • Metrics-oriented and outcome-driven. You use data to measure program health, prioritize investment, and communicate risk to technical and non-technical audiences alike.
  • A strong people leader and culture builder. You attract and retain top security talent across disciplines, create clear career pathways, and foster an environment where analysts, engineers, and GRC professionals all feel ownership over the mission.
  • A clear, confident communicator who can brief executives on risk posture, walk engineering teams through threat models, and represent the security organization in cross-functional forums with equal effectiveness.

Benefits

Comp & perks
  • Health Insurance: All full-time employees are eligible to enroll in Medical, Dental, and Vision.
  • Additional Benefits: Full-time employees are eligible for fertility, commuter, and educational assistance benefits.
  • 401(K) Matching Plan: We are proud to offer a competitive 401k matching plan to our employees to support their future financial goals.
  • Vacation: All salaried employees are eligible for flexible time-off.
  • Holiday Pay: All regular, full-time employees are eligible for ten company paid holidays.
  • Employee Discounts: Employees receive discounts on select grading services for approved submissions.
  • Flexible Hours: Many of our teams offer flexible schedules with varying shifts and will work with you to accommodate your needs.
  • Fun Working Environment: Our team members are invited to participate in celebrations, holiday events, and team building activities.