Top Hybrid Cybersecurity Jobs in Boston, MA

Lead and mature the Security GRC function, evolving IMS across ISO and SOC frameworks, modernizing quantitative risk reporting using FAIR, guiding AI governance, partnering with product and engineering on cloud/Snowflake controls, and ensuring GDPR/CPRA compliance to enable revenue and enterprise trust.

Lead the Information Security function, manage security operations, ensure compliance with regulations, and develop a high-performing security team at WHOOP.

Lead Product Security and Security Engineering to embed security into the SDLC. Define strategy, build scalable authn/authz and encryption services, secure LLM-driven products, integrate automated S-SDLC tooling, partner with engineering/product, and hire and grow Red Team and PSIRT functions while prioritizing vulnerability remediation.

Manage Flywire's SOX ITGC program: liaise with auditors, scope and test IT controls, document processes, track remediation, support automation and integrate IT SOX with other compliance frameworks.

Lead and manage large IT financial audits, guide stakeholders on financially aligned compliance, champion AI/ML and automation across the audit lifecycle, implement automated testing and continuous audit methodologies, translate findings into risk-based business recommendations, hire and develop team members, and maintain regulatory and industry compliance expertise.

The Head of Security will lead security initiatives, manage security tools, collaborate with teams on security practices, and maintain compliance certifications.

Partner with Sales to design and validate identity and security solutions, deliver tailored demos and POCs, support complex enterprise sales cycles, translate capabilities into business outcomes, and share field insights with Product and Enablement teams.

Lead and develop a global Cybersecurity Incident Response Team responsible for enterprise and Atlas service incident management, investigations, incident command, post-incident remediation guidance, and tabletop exercises to improve detection and response.

Lead and mature threat hunting practice by proactively hunting IOCs across endpoints, network, and cloud. Develop and execute complex searches, produce hunt reports, refine playbooks and detection rules, leverage automation/AI, mentor junior analysts, and integrate threat intelligence to improve client security posture.

Lead and develop a team in the Security Trust & Compliance area, overseeing compliance operations, audits, and fostering cross-functional collaboration to bolster customer trust and manage risks effectively.