Fractional CISO Needed for Security & Compliance Expertise
Company Overview
Regie.ai is an AI-native SaaS platform (Series B) that helps sales teams automate and personalize their outreach. As an engineering-led organization, we prioritize security and compliance as a core pillar of our customer trust and product excellence.
Role Summary
We are seeking an experienced Fractional CISO to lead our security and compliance strategy. This is a part-time, long-term engagement (approximately 20–40 hours per month). You will own our compliance roadmap, serve as the primary security contact for our enterprise customers, and ensure our infrastructure remains audit-ready.
Key Responsibilities
• Compliance Leadership (SOC 2 & Beyond):
- Oversee and drive the continuous monitoring and annual renewal of our SOC 2 Type II certification.
- Maintain and update internal security policies to align with evolving regulatory requirements and industry best practices.
• Data Privacy & Legal Support:
- Manage DPA (Data Processing Addendum) reviews and related privacy compliance tasks.
- Ensure the organization adheres to GDPR, CCPA, and other relevant data protection frameworks.
• Sales Enablement & Customer Trust:
- Own the completion of Security & Compliance Questionnaires from prospective and current enterprise customers.
- Join customer calls as the technical security expert to address high-level concerns regarding our security posture and data handling.
• Strategic Security Advisory:
- Partner with the Head of Engineering to identify and mitigate infrastructure risks.
- Provide guidance on security tooling, threat modeling, and incident response readiness.
Qualifications
• Experience: 10+ years in information security, with at least 3+ years in a CISO or Head of Security role (ideally within the SaaS/AI space).
• Compliance Expert: Proven track record of managing SOC 2 audits from start to finish.
• Customer-Facing: Excellent communication skills with the ability to translate complex security concepts for non-technical stakeholders and enterprise legal teams.
• Technical Depth: Familiarity with AWS cloud security, MongoDB atlas environments, and modern AI/LLM security considerations.
Apply tot his job
Apply To this Job
Regie.ai is an AI-native SaaS platform (Series B) that helps sales teams automate and personalize their outreach. As an engineering-led organization, we prioritize security and compliance as a core pillar of our customer trust and product excellence.
Role Summary
We are seeking an experienced Fractional CISO to lead our security and compliance strategy. This is a part-time, long-term engagement (approximately 20–40 hours per month). You will own our compliance roadmap, serve as the primary security contact for our enterprise customers, and ensure our infrastructure remains audit-ready.
Key Responsibilities
• Compliance Leadership (SOC 2 & Beyond):
- Oversee and drive the continuous monitoring and annual renewal of our SOC 2 Type II certification.
- Maintain and update internal security policies to align with evolving regulatory requirements and industry best practices.
• Data Privacy & Legal Support:
- Manage DPA (Data Processing Addendum) reviews and related privacy compliance tasks.
- Ensure the organization adheres to GDPR, CCPA, and other relevant data protection frameworks.
• Sales Enablement & Customer Trust:
- Own the completion of Security & Compliance Questionnaires from prospective and current enterprise customers.
- Join customer calls as the technical security expert to address high-level concerns regarding our security posture and data handling.
• Strategic Security Advisory:
- Partner with the Head of Engineering to identify and mitigate infrastructure risks.
- Provide guidance on security tooling, threat modeling, and incident response readiness.
Qualifications
• Experience: 10+ years in information security, with at least 3+ years in a CISO or Head of Security role (ideally within the SaaS/AI space).
• Compliance Expert: Proven track record of managing SOC 2 audits from start to finish.
• Customer-Facing: Excellent communication skills with the ability to translate complex security concepts for non-technical stakeholders and enterprise legal teams.
• Technical Depth: Familiarity with AWS cloud security, MongoDB atlas environments, and modern AI/LLM security considerations.
Apply tot his job
Apply To this Job