Own the strategic vision and tactical execution of Jasper’s security program, managing a lean, high-performing team to protect company assets and customer data. Establish program metrics to track effectiveness and champion continuous improvement.
Oversee and guide best practices in product security, collaborating closely with engineering teams to embed security throughout the software development life cycle. Lead security reviews, threat modeling, and ensure secure design and development of Jasper’s products and features.
Partner with leadership and engineering to evaluate risks pragmatically. Your goal is to find "yes, but safely" solutions that allow the business to innovate while managing exposure.
Evaluate organizational risks, prioritize remediation efforts based on real-world impact, or accept risks and exceptions on behalf of the business. Facilitate risk-based decisions.
Lead the incident response life cycle, ensuring we have robust detection, rapid response capabilities, and clear communication protocols in place.
Act as the escalation point for complex customer requests to maintain sales velocity and deal integrity. You will jump on calls with prospective and current enterprise customers to discuss our security practices.
Mentor and guide your direct reports, fostering a culture of continuous learning, accountability, and professional growth.

Requirements

7+ years of experience in information security, with at least 3 years in a leadership role managing teams or security programs.
Deep, hands-on experience with security frameworks (e.g., SOC2, ISO27001, HIPAA) in a cloud-native environment.
Proven ability to communicate complex security concepts clearly to non-technical stakeholders and customers. You should be comfortable representing the company in external meetings.
Strong understanding of risk management principles (e.g., NIST CSF) and the ability to translate technical risks into business language.
Solid foundation in cloud security (AWS/GCP/Azure), application security, and modern SaaS infrastructure.
Exceptional written and verbal communication skills, with a professional and approachable demeanor that invites collaboration.
Experience leading security at a high-growth SaaS or AI startup.
Relevant professional certifications, such as CISSP, CISM, CRISC, or CISA.
Experience with privacy regulations such as GDPR and CCPA.

Benefits

Comprehensive Health, Dental, and Vision coverage beginning on the first day for employees and their families
401(k) program with up to 2% company matching
Equity grant participation
Flexible PTO with a FlexExperience budget ($900 annually) to help you make the most of your time away from work
FlexWellness program ($1,800 annually) to help support your personal health goals
Generous budget for home office set up
$1,500 annual learning and development stipend
16 weeks of paid parental leave

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

information securitysecurity frameworkscloud securityapplication securityrisk managementincident responsethreat modelingsecure designSaaS infrastructuresecurity reviews

Soft Skills

communication skillsleadershipmentoringcollaborationaccountabilityprofessional growthproblem-solvingcustomer engagementcontinuous improvementdecision-making

Certifications

CISSPCISMCRISCCISA