Sauce Labs is hiring a
VP Information Security

Summary

Join Sauce Labs as Vice President of Information Security to lead and manage all aspects of our information security program.

Requirements

• Bachelor's degree in Computer Science, Information Technology, or a related field; Master's degree preferred
• Industry-recognized certifications such as CISSP, CISM, or CISA required; additional certifications such as CCISO or CEH preferred
• Proven track record of at least 10 years in progressively responsible roles in information security in the cloud computing industry, with at least 5 years of experience in a leadership capacity
• Deep understanding of cybersecurity and data privacy principles, technologies, and frameworks, including ISO 27000 series, AICPA Trust Services Criteria / SOC 2, and GDPR
• Strong knowledge of regulatory requirements and industry standards related to information security, privacy, and data protection
• Excellent leadership, communication, and interpersonal skills, with the ability to influence and collaborate effectively at all levels of the organization
• Demonstrated ability to think strategically, solve complex problems, and make data-driven decisions in a fast-paced and dynamic environment
• Experience in developing and managing budgets, vendor relationships, and third-party service providers related to information security
• Proven ability to build and maintain a positive security culture, fostering awareness, accountability, and continuous improvement throughout the organization

Responsibilities

• Develop and implement a comprehensive information security strategy and roadmap aligned with business objectives and regulatory requirements
• Establish, develop and maintain policies, standards, procedures, and guidelines to ensure effective information security management across the organization
• Lead a team of cybersecurity professionals, providing guidance, mentoring, and professional development opportunities to ensure a high-performing and motivated team
• Oversee the design, implementation, and maintenance of security controls, technologies, and processes to protect against threats, vulnerabilities, and cyber attacks
• Collaborate with cross-functional teams, including Engineering, Compliance, IT, Legal and business units, to integrate security into the overall enterprise architecture and business processes
• Conduct regular risk assessments, vulnerability scans, and penetration tests to identify and mitigate security risks and compliance gaps
• Monitor and analyze security events and incidents, leading incident response and investigation efforts to minimize the impact and prevent recurrence
• Stay abreast of emerging cybersecurity threats, trends, and best practices, and evaluate new technologies and solutions to enhance our security posture
• Serve as the primary point of contact for internal and external stakeholders on information security matters, including executive leadership, board of directors, customers, partners, and regulators
• Prepare and present regular reports and updates on the status of information security initiatives, key metrics, and performance indicators to senior management and relevant committees

Benefits

• Health coverage (medical, dental, and vision)
• Disability insurance
• Life insurance
• Parental leave benefits
• Flexible time off
• Professional development opportunities
• 401(k) retirement plan with match