Head of Security

Summary

Join Overjet, a leading dental AI company, as the Head of Security. Lead global security initiatives, ensuring compliance with regulations like GDPR and HIPAA. Build and operationalize Overjet's security strategy, focusing on AI model security and data protection. Collaborate with various teams to integrate security into the AI model lifecycle. This role requires extensive experience in cybersecurity, particularly in AI and healthcare. Overjet offers competitive compensation, a hybrid workplace, and comprehensive benefits.

Requirements

• 10+ years of progressive experience in cybersecurity, including 3+ years in leadership roles, ideally in AI, healthcare, or regulated industries
• Deep expertise in GDPR, HIPAA, and global privacy/security frameworks
• Direct experience securing AI/ML models and data pipelines, including understanding of AI-specific risks
• Strong track record of building and scaling security programs in fast-paced, innovative environments
• Expertise in cloud security, application security, and data protection
• Familiarity with NIST, ISO 27001, SOC 2, HITRUST, and emerging AI governance standards
• Excellent leadership and communication skills, with the ability to partner across technical and non-technical teams

Responsibilities

• Design, implement, and evolve Overjet’s global security strategy in close collaboration with AI and product teams
• Establish security policies, processes, and best practices that address AI, healthcare, and international data security challenges
• Lead enterprise-wide security risk assessments, focusing on AI model development, healthcare data usage, and global data flows
• Partner with AI leadership to integrate security and privacy into the AI model lifecycle ("AI security by design")
• Ensure security of AI/ML models and datasets, with strategies to mitigate risks like model inversion, data leakage, adversarial attacks, and unauthorized access
• Oversee secure training and deployment of AI models leveraging sensitive healthcare data, including privacy-preserving technologies such as anonymization, synthetic data, and differential privacy
• Guide development teams in implementing security and privacy guardrails in AI workflows
• Lead efforts to ensure Overjet’s compliance with GDPR, HIPAA, and other relevant global healthcare privacy and security regulations
• Conduct and oversee Data Protection Impact Assessments (DPIAs) and AI Risk Assessments, ensuring proactive identification of potential privacy and security risks
• Stay ahead of emerging AI governance, ethical AI, and data privacy regulations (e.g., EU AI Act), preparing the organization for compliance and certification where applicable
• Oversee security of Overjet’s cloud infrastructure (AWS, GCP, or similar), including secure hosting, encryption, identity and access management, and monitoring
• Drive application security, including secure API development, threat modeling, and vulnerability management
• Ensure security measures are in place for customer-facing AI products and integrations with healthcare partners
• Build and mentor a security team to scale with Overjet’s international growth
• Collaborate closely with AI, engineering, compliance, and legal teams to ensure alignment on security and privacy priorities
• Represent Overjet’s security posture in conversations with customers, partners, and regulators
• Foster a strong "security-first" and "privacy-first" mindset across the organization

Preferred Qualifications

• Experience navigating international healthcare regulations (e.g., NHS, EU MDR, PIPEDA)
• Knowledge of AI ethics, responsible AI practices, and evolving regulatory frameworks (EU AI Act, OECD AI Principles)
• Background in dental, healthcare, or medical device industries is a plus

Benefits

• Competitive Compensation and Equity
• Hybrid workplace that provides flexibility, vibrant in-person workspaces, and the ability to build strong connections across all of Overjet - regardless of location
• 401k plans with a matching program
• Medical, Dental and Vision coverage: 99% employee premium covered, 75% dependent premium covered
• Life and AD+D Insurance
• 8 weeks Paid Parental Leave
• Optional HSA with Employer contribution
• Flexible Time Off and company paid holidays
• Annual Learning and Development Stipend
• Work from Home Stipend