FREE ACCESS
5,000–10,000 jobs/day

See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.

Head of Trust and Security
FilevineHead of Trust and Security overseeing compliance and security initiatives at a leading Legal AI company. Leading FedRAMP and internal compliance efforts across multiple teams.
Tech Stack
Tools & technologiesCloud
About the role
Key responsibilities & impact- Own Filevine’s FedRAMP 20x Moderate strategy, delivery plan, certification readiness, and ongoing compliance posture.
- Lead the design and execution of FedRAMP evidence automation, continuous monitoring, and reporting required for Marketplace certification and sustained authorization.
- Serve as the single-threaded owner for FedRAMP engagements with 3PAOs, the FedRAMP PMO, agency stakeholders, and internal executive sponsors.
- Set the roadmap and priorities for dedicated FedRAMP engineering resources, ensuring regulatory requirements become shipped technical controls, automated evidence, and operationally sustainable processes.
- Own POA&M governance, risk acceptance workflows, certification readiness reporting, and remediation planning across product and platform teams.
- Ensure FedRAMP implementations are pragmatic, risk-based, technically grounded, and appropriately scoped for Filevine’s architecture, maturity, and business priorities.
- Provide clear, consistent executive reporting on progress, risk, tradeoffs, dependencies, resourcing needs, and certification readiness.
- Drive governance for vulnerability findings from scanning tools, penetration tests, customer reviews, audits, and bug bounty programs, including risk adjustment, remediation ownership, escalation, and executive tradeoff decisions.
- Maintain a single source of truth for security/compliance status, control gaps, remediation commitments, and customer-facing trust claims.
- Ensure trust center materials, customer security responses, sales enablement messaging, and public compliance claims are accurate, current, and defensible.
- Translate privacy obligations and customer commitments into product, engineering, and operational requirements.
- Support AI and data governance efforts by ensuring privacy, security, and customer trust requirements are reflected in product and operational decisions.
- Drive alignment between compliance goals, engineering capacity, product strategy, customer commitments, and business risk.
Requirements
What you’ll need- Bachelor’s degree or equivalent practical experience.
- 10+ years of experience in security compliance, GRC, product/program leadership, privacy, trust, or related roles within SaaS, cloud, or high-trust technology environments.
- Direct ownership of FedRAMP Moderate, FedRAMP High, FedRAMP 20x, or a comparable federal cloud authorization program.
- Proven experience translating regulatory, security, and privacy requirements into technical implementation plans with engineering teams.
- Experience leading complex, cross-functional initiatives with executive visibility, ambiguous requirements, and multi-quarter delivery timelines.
- Experience partnering with security engineering, infrastructure, product, legal, audit, and customer-facing teams.
- Deep knowledge of FedRAMP, NIST 800-53, FedRAMP 20x automation concepts, continuous monitoring, POA&M governance, 3PAO engagement, and federal cloud authorization workflows.
- Strong working knowledge of security and compliance frameworks such as SOC 2, ISO 27001, HIPAA, PCI-DSS, and customer security review processes.
- Strong working knowledge of privacy operations, consent management, data governance, DSR workflows, subprocessors, DPAs, retention, and privacy-by-design practices.
- Ability to translate regulatory and security requirements into actionable, value-driven product and engineering work.
- Strong product and program management expertise, including roadmap development, prioritization, milestone definition, and executive reporting.
- Pragmatic, analytical approach to risk management and decision-making in fast-paced environments.
- Excellent stakeholder management, written communication, and executive presence.
- Comfort operating with dedicated engineering resources while remaining accountable for prioritization, clarity, outcomes, and risk-based tradeoffs.
Benefits
Comp & perks- Medical, Dental, & Vision Insurance (for full-time employees)
- Competitive & Fair Pay
- Maternity & paternity leave (for full-time employees)
- Short & long-term disability
- Opportunity to learn from a dedicated leadership team
- Top-of-the-line company swag
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
FedRAMP ModerateNIST 800-53Continuous MonitoringPOA&M GovernanceData GovernancePrivacy OperationsTechnical Implementation PlansRegulatory Requirements TranslationAutomation ConceptsCross-Functional Initiative Leadership
Soft Skills
Analytical Decision-MakingWritten CommunicationExecutive PresenceStakeholder EngagementPragmatic Approach