Director, Security Engineering and IT

Summary

Join Wrapbook, a leading production payroll and accounting platform, as the Director, Security Engineering and IT. This remote position, based in the USA or Canada, offers the opportunity to lead the company's security strategy and operations, reporting to the VP of Engineering. You will be responsible for application, infrastructure, and cloud security, as well as overseeing the IT team to ensure security and usability are seamlessly integrated. This role combines technical leadership, strategic planning, and cross-functional collaboration, with the expectation of hands-on involvement when needed. You will guide security and IT efforts across the organization, advise on risk and incident response, and shape a long-term security roadmap aligned with Wrapbook's business needs. You will also serve as the technical and strategic voice on security for internal teams and external stakeholders, including customers, partners, and auditors.

Requirements

• 8+ years of experience in security roles, including technical leadership
• Deep expertise in application, infrastructure, and cloud security
• Proven ability to lead, grow, and inspire technical teams, including IT
• Willingness to dive into technical projects and systems when needed
• Experience managing both in-house teams and external vendors
• Strong communication skills, including translating security risks to business impact
• Familiarity with frameworks like NIST, SOC2, ISO27001
• CISSP required; other certifications (e.g. CISM, CISA, CRISC) a plus
• Experience managing or partnering closely with IT teams

Responsibilities

• Own and evolve the company-wide security program and roadmap
• Lead and grow a team covering security engineering, operations, and IT
• Define and implement application, infrastructure, and cloud security practices
• Be a hands-on technical leader—able to support security and IT projects directly when needed
• Serve as final escalation for technical and security incidents; guide and participate in incident response
• Collaborate with execs on risk tradeoffs, budget, and ROI for security and IT investments
• Collaborate with GRC to drive compliance implementation efforts (e.g. SOC2, ISO27001) and align security controls with business needs
• Lead business continuity, disaster recovery, and incident response planning
• Build and report on security metrics tied to business outcomes
• Integrate security into product and engineering lifecycles; champion security-by-design
• Collaborate with cross-functional teams (Privacy, Legal, Engineering, Support) to build a strong security culture
• Communicate security value to internal and external audiences; support sales and marketing efforts
• Manage vendor relationships and third-party security services
• Represent Wrapbook in security conversations with customers, partners, and regulators

Preferred Qualifications

Familiarity with Rails

Benefits

• Unlimited Paid Time Off
• Work from anywhere in Canada and USA
• Health and Dental benefits
• Up to $1,500 USD/ $2,025 CAD towards IT set up for your home
• Up to 2% matching RRSP / 401K
• Learning and Development opportunities
• Up to $50 USD/ $67.50 CAD towards Internet/Cell phone service