At Hi Marley, we’re not just a technology company—we’re on a mission to revolutionize the insurance industry with our conversational platform that makes communication simple, efficient, and delightful. Built for carriers, powered by SMS, and designed by insurance experts, Hi Marley connects people through seamless, friendly conversations that save time, money, and hassle. Our platform helps insurance carriers strengthen customer relationships while streamlining operations. With a focus on collaboration, coaching, and powerful analytics, we deliver the insights insurance teams need when they need them—creating a smooth, frictionless experience for customers along the way.
We’re looking for a Director of Security to lead and scale our security program as we grow our SaaS platform in the insurance and communications space. You’ll own the full lifecycle of security and compliance initiatives, from policy design and audits to security operations and vendor management. This is a strategic and executional role, blending hands-on implementation with leadership across the organization. You will serve as the primary point of accountability for information security, data protection, and compliance readiness, especially in regulated environments such as Tier 1 insurance carriers.
Teamwork and shared enthusiasm is a core part of our culture, which is why this role involves joining us in the Boston office for two days each week
What You’ll Do:
- Lead Hi Marley’s security program across infrastructure, product, data, and personnel.
- Ensure compliance with enterprise-grade insurance industry security requirements and frameworks (specifically SOC 2 and ISO 27001 or ISO 42001).
- Build and maintain core security documentation, policies, and playbooks.
- Lead efforts to achieve and maintain certifications, including ISO 42001 and SOC 2 Type II.
- Partner with Legal, Sales, and Customer Success to review contracts, DPAs, and security exhibits.
- Own vendor security assessments and manage responses to customer security questionnaires.
- Build scalable, self-service tools and knowledge bases to streamline security-related workflows.
- Oversee incident response planning, tabletop exercises, and disaster recovery validation.
- Implement security controls across cloud infrastructure (AWS), applications, and endpoints.
- Collaborate with Engineering and DevOps to embed security into SDLC, CI/CD pipelines, and production systems.
- Track and report key risk and compliance metrics.
- Ensure that security controls uphold “Privacy by Design” principles
What We're Looking For:
- 7+ years in cybersecurity, risk management, or information security roles, with at least 3 years in a leadership or ownership position.
- At least 5 years of insurtech or fintech experience
- Experience in high-growth, cloud-native environments (AWS preferred).
- Deep familiarity with ISO 27001, SOC 2, and ideally ISO 42001 frameworks.
- Strong understanding of data protection laws and practices (e.g., CCPA, GDPR, GLBA).
- Exceptional written and verbal communication skills—especially in creating clear, audit-ready documentation.
- Track record of working cross-functionally with Legal, Engineering, and Customer teams.
- Passion for operational efficiency and automating repetitive security work.
- Comfortable balancing pragmatic risk management with enterprise-class expectations.
- Committed to ethical practices, transparency, and long-term trust-building
Who We Are:
Hi Marley has three core values that are the foundation of our company culture, which every employee embodies:
- Max Courage - we encourage our team, our customers, and their customers to dream big, try new ideas and maximize impact by measuring risk.
- Be Humble – we lead with appreciation and promote a culture of humility, compassion and openness to learn from anyone, anywhere.
- Ubuntu “I am because we are” - we believe true success is much bigger than any single individual or company. By aligning our individual aims behind a shared purpose we can achieve our fullest potential, together.
Benefits and Perks:
On top of an exciting, supportive and intellectually curious workplace, we provide:
- Full benefits package for employees working 30+ hours per week, including parental leave, a matching 401k program, and medical, dental, vision, disability, and life insurance.
- Open vacation policy - we all work hard and take time for ourselves when we need it
- Competitive salary and generous stock options - we all get to own a piece of what we’re building
- A fun, lively startup culture
- Core values-based leadership
- A culture of employee engagement, diversity and inclusion
- Ample opportunities to learn and take on new responsibilities in a fast-paced, growth-mode startup
Hi Marley is proud to be an equal employment opportunity employer. We celebrate diversity and do not discriminate based on gender, sexual orientation, gender identity, religion, race, veteran status, disability status, or any other characteristic protected by applicable law. We are committed to building an inclusive work environment representing a variety of backgrounds, perspectives, and skills, where all employees are encouraged to be their authentic selves.
Hi Marley participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S. For more information, please review the documents under "E-Verify Poster" here: https://e-verify.uscis.gov/web/OnlineResources.aspx
Top Skills
Hi Marley Boston, Massachusetts, USA Office
10 Post Office Square, Boston, MA, United States, 02109
Similar Jobs at Hi Marley
What you need to know about the Boston Tech Scene
Key Facts About Boston Tech
- Number of Tech Workers: 269,000; 9.4% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Thermo Fisher Scientific, Toast, Klaviyo, HubSpot, DraftKings
- Key Industries: Artificial intelligence, biotechnology, robotics, software, aerospace
- Funding Landscape: $15.7 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Summit Partners, Volition Capital, Bain Capital Ventures, MassVentures, Highland Capital Partners
- Research Centers and Universities: MIT, Harvard University, Boston College, Tufts University, Boston University, Northeastern University, Smithsonian Astrophysical Observatory, National Bureau of Economic Research, Broad Institute, Lowell Center for Space Science & Technology, National Emerging Infectious Diseases Laboratories
