Director of Security, IT, and Compliance

Summary

Join Murmuration, a nonprofit organization, as their Director of Security, IT & Compliance. You will oversee and shape the teams responsible for Murmuration’s security, IT, and compliance strategies, playing a fundamental role in powering Murmuration’s platform and partners. This role involves defining and implementing scalable processes, mitigating risks, and ensuring the integrity and security of the organization’s technology infrastructure. You will lead and mentor the Security Engineering and IT teams, fostering a culture of innovation and accountability. The position requires a Bachelor's degree or equivalent experience, 10+ years of progressive experience in IT and Security, and strong knowledge of IT infrastructure and cybersecurity best practices. Murmuration offers a comprehensive benefits package including health insurance, retirement benefits, flexible PTO, and a flexible remote work environment.

Requirements

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (Note: Work experience can be substituted for degree requirements)
• 10+ years of progressive experience in IT and Security with at least 5 years in leadership roles
• Strong knowledge of IT infrastructure, cloud technologies (AWS preferred), and cybersecurity best practices
• Experience implementing and managing compliance framework(s), such as SOC 2, NIST CSF, ISO27001, GDPR, or HIPAA
• Proven ability to define and execute strategic plans and translate them into actionable roadmaps
• Demonstrated success in building and leading high-performing technical teams
• Strong understanding of risk management frameworks and experience, mitigating risks across IT and security domains
• Proficiency in automation and infrastructure tools like Terraform, Ansible, or similar technologies
• Exceptional communication and interpersonal skills, with the ability to collaborate effectively across teams and with non-technical stakeholders
• Experience managing budgets and optimizing IT resources to align with organizational goals

Responsibilities

• Define and execute a comprehensive Security, IT, and Compliance strategy to support Murmuration’s growth and mission
• Develop and maintain roadmaps for Security, IT, and Compliance initiatives, setting clear priorities and measurable outcomes
• Establish and execute on a risk management framework, including gap analysis with remediation timelines to identify, assess, and mitigate risks, ensuring regular review and updates
• Oversee the security and operational reliability of Murmuration’s IT infrastructure, including cloud environments, ensuring reliability and scalability
• Lead compliance certification efforts and collaborate with internal teams to ensure adherence to relevant frameworks like SOC 2, NIST CSF, ISO27001, and privacy laws. Work with Legal to determine what other frameworks with which to align; this may include GDPR, HIPAA, COPPA, and SOX regulations, as well as considerations specific to 501c3 and 501c4 data hygiene
• Review and refine processes for key workflows, ensuring effective cross-functional collaboration and timely handling of incoming requests
• Lead, mentor, and grow the Security Engineering and IT teams, fostering a culture of innovation, accountability, and learning
• Implement and maintain robust security controls, monitoring systems, and incident response processes to protect Murmuration’s technical assets
• Manage IT procurement, vendor relationships, and budgets to ensure alignment with organizational goals and cost efficiency
• Partner with teams across Engineering, Finance, and People to align on compliance requirements and support organization-wide initiatives

Preferred Qualifications

• Relevant certifications such as CISSP, CISM, or AWS certifications
• Experience integrating DevOps principles into security practices
• Familiarity with advanced monitoring tools like Datadog and their application in security operations
• Background in mentoring teams and fostering a culture of innovation and continuous learning

Benefits

• Health, vision, and dental insurance with 100% of premiums covered for you and qualifying family members
• Retirement benefits with a 5% employer match
• A flexible unlimited PTO plan
• Generous paid parental leave
• Pre-tax commuter benefits
• A company laptop
• A flexible remote work environment
• A home office setup stipend for all new employees
• Monthly reimbursement for remote work expenses
• A yearly professional development fund
• Mental health and wellness benefits through Calm and Better Help
• Yearly in-person staff retreats
• A welcoming culture that celebrates diversity, equity, and inclusion