Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Filevine

Head of Trust and Security

Filevine

Head of Trust and Security overseeing compliance and security initiatives at a leading Legal AI company. Leading FedRAMP and internal compliance efforts across multiple teams.

Posted 7/10/2026full-timeRemote • 🇺🇸 United StatesLead💰 $190,000 - $210,000 per yearWebsite

Tech Stack

Tools & technologies
Cloud

About the role

Key responsibilities & impact
  • Own Filevine’s FedRAMP 20x Moderate strategy, delivery plan, certification readiness, and ongoing compliance posture.
  • Lead the design and execution of FedRAMP evidence automation, continuous monitoring, and reporting required for Marketplace certification and sustained authorization.
  • Serve as the single-threaded owner for FedRAMP engagements with 3PAOs, the FedRAMP PMO, agency stakeholders, and internal executive sponsors.
  • Set the roadmap and priorities for dedicated FedRAMP engineering resources, ensuring regulatory requirements become shipped technical controls, automated evidence, and operationally sustainable processes.
  • Own POA&M governance, risk acceptance workflows, certification readiness reporting, and remediation planning across product and platform teams.
  • Ensure FedRAMP implementations are pragmatic, risk-based, technically grounded, and appropriately scoped for Filevine’s architecture, maturity, and business priorities.
  • Provide clear, consistent executive reporting on progress, risk, tradeoffs, dependencies, resourcing needs, and certification readiness.
  • Drive governance for vulnerability findings from scanning tools, penetration tests, customer reviews, audits, and bug bounty programs, including risk adjustment, remediation ownership, escalation, and executive tradeoff decisions.
  • Maintain a single source of truth for security/compliance status, control gaps, remediation commitments, and customer-facing trust claims.
  • Ensure trust center materials, customer security responses, sales enablement messaging, and public compliance claims are accurate, current, and defensible.
  • Translate privacy obligations and customer commitments into product, engineering, and operational requirements.
  • Support AI and data governance efforts by ensuring privacy, security, and customer trust requirements are reflected in product and operational decisions.
  • Drive alignment between compliance goals, engineering capacity, product strategy, customer commitments, and business risk.

Requirements

What you’ll need
  • Bachelor’s degree or equivalent practical experience.
  • 10+ years of experience in security compliance, GRC, product/program leadership, privacy, trust, or related roles within SaaS, cloud, or high-trust technology environments.
  • Direct ownership of FedRAMP Moderate, FedRAMP High, FedRAMP 20x, or a comparable federal cloud authorization program.
  • Proven experience translating regulatory, security, and privacy requirements into technical implementation plans with engineering teams.
  • Experience leading complex, cross-functional initiatives with executive visibility, ambiguous requirements, and multi-quarter delivery timelines.
  • Experience partnering with security engineering, infrastructure, product, legal, audit, and customer-facing teams.
  • Deep knowledge of FedRAMP, NIST 800-53, FedRAMP 20x automation concepts, continuous monitoring, POA&M governance, 3PAO engagement, and federal cloud authorization workflows.
  • Strong working knowledge of security and compliance frameworks such as SOC 2, ISO 27001, HIPAA, PCI-DSS, and customer security review processes.
  • Strong working knowledge of privacy operations, consent management, data governance, DSR workflows, subprocessors, DPAs, retention, and privacy-by-design practices.
  • Ability to translate regulatory and security requirements into actionable, value-driven product and engineering work.
  • Strong product and program management expertise, including roadmap development, prioritization, milestone definition, and executive reporting.
  • Pragmatic, analytical approach to risk management and decision-making in fast-paced environments.
  • Excellent stakeholder management, written communication, and executive presence.
  • Comfort operating with dedicated engineering resources while remaining accountable for prioritization, clarity, outcomes, and risk-based tradeoffs.

Benefits

Comp & perks
  • Medical, Dental, & Vision Insurance (for full-time employees)
  • Competitive & Fair Pay
  • Maternity & paternity leave (for full-time employees)
  • Short & long-term disability
  • Opportunity to learn from a dedicated leadership team
  • Top-of-the-line company swag

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
FedRAMP ModerateNIST 800-53Continuous MonitoringPOA&M GovernanceData GovernancePrivacy OperationsTechnical Implementation PlansRegulatory Requirements TranslationAutomation ConceptsCross-Functional Initiative Leadership
Soft Skills
Analytical Decision-MakingWritten CommunicationExecutive PresenceStakeholder EngagementPragmatic Approach