Director of Cybersecurity and Information Security

 Posted 8 days ago
     
10+ years experience
Apply Now

Please mention DailyRemote when applying

AI Summary

The Director will own the organization's full technology and security posture, establishing an ISO 27001-aligned framework and securing the supply chain and warehouse management systems. They will also build and manage AI-powered cyber defense agents to detect and respond to threats in real time.
About the Role & Team
As ProEquip's Director of Cybersecurity and Information Security, you will own the full technology and security posture of the organization — from day-to-day tool administration to building AI-powered cyber defense capabilities. This is a foundational role: you will establish and maintain our ISO 27001-aligned security framework, secure the systems that underpin our warehouse management platform and supply chain, and ensure that our life-saving protective equipment can be distributed to critical infrastructure workers without interruption — even in the face of sophisticated cyberattacks.

This role reports to the VP of Finance & Operations and is fully remote. We have a preference for candidates based in Berkeley, CA or the broader Bay Area.

What You Will Do
No two days look exactly alike, but here is the core of what you'll own:
  • Own and continuously improve ProEquip's information security management system (ISMS), ensuring compliance with ISO 27001 or an equivalent framework (SOC 2, NIST CSF); lead the organization toward formal certification.
  • Administer and secure our full SaaS tool stack — Google Workspace, Notion, Slack, Claude (Anthropic), and others — including user lifecycle management, permissions, and integrations.
  • Implement and manage Single Sign-On (SSO) across all software platforms, reducing credential sprawl and enforcing least-privilege access controls organization-wide.
  • Oversee security of our externally facing website and our AI-assisted, in-house warehouse management system (WMS) and other ERP-related tools, working closely with the team building and iterating on that platform.
  • Build, deploy, and manage AI-powered cyber defense agents — leveraging modern LLM tooling and agentic frameworks — to detect, respond to, and learn from threats in real time.
  • Conduct threat modeling, penetration testing coordination, and vulnerability management to ensure our systems can withstand attacks from sophisticated bad actors targeting our pandemic response supply chain.
  • Define and enforce security policies, incident response playbooks, and disaster recovery plans tailored to ProEquip's mission-critical distribution operations.
  • Partner with transportation and logistics partners to assess and address third-party and supply chain security risks.
  • Evaluate and procure security tooling and IT infrastructure; manage vendor relationships and collaborate on contracting efforts.
  • Train and advise staff on security best practices, phishing awareness, and responsible AI usage.
  • Serve as the organization's subject matter expert on AI-era cybersecurity trends and their implications.

Required Qualifications & Skills
  • 12+ years of progressive experience in IT, information security, or cybersecurity, with at least 3 years in a leadership or principal-level role.
  • Demonstrated hands-on experience implementing or managing an ISO 27001 ISMS or equivalent framework (SOC 2, NIST CSF, CIS Controls).
  • Deep expertise securing cloud-based SaaS environments (Google Workspace, Slack, Notion, or similar).
  • Proven experience implementing SSO solutions (e.g., Okta, Google Identity, Azure AD / Entra ID) across a multi-application environment.
  • Strong understanding of AI/ML security risks and experience building or deploying AI agents for security automation or cyber defense.
  • Experience with threat modeling, penetration testing, vulnerability management, and incident response.
  • Ability to work independently and set organizational security strategy with minimal oversight.
  • Excellent written and verbal communication skills — able to translate security risks clearly for non-technical stakeholders and executives.

Preferred Qualifications
It would be great if you also have:
  • Location in Berkeley, CA or the Bay Area (fully remote role, but periodic in-person collaboration is encouraged).
  • Experience securing supply chain, logistics, or warehouse management systems.
  • Familiarity with LLM-based agentic frameworks (e.g., Claude Agent SDK, LangChain, CrewAI) for building cyber defense tooling.
  • CISSP, CISM, ISO 27001 Lead Implementer/Auditor, or equivalent professional certification.
  • Experience in a nonprofit, public health, or mission-driven organization.
  • Background in pandemic preparedness, critical infrastructure security, or CISA-related frameworks.

Education
Bachelor's degree in Computer Science, Information Security, Information Systems, or an equivalent field and experience required.
Preferred: Master's degree in Cybersecurity, Information Assurance, or a related discipline.


Similar Jobs

See all Remote Software Development jobs →

Personalize your Remote Job Search in 3 Easy Steps!

Discover remote opportunities in Software Development

Answer easy questions

Answer easy questions

200,000+ jobs across 15+ categories

Get your best job matches

Get your best job matches

Only hand-screened, legit jobs

Find a remote job faster

Find a remote job faster

No ads, scams, or junk

I was the first applicant for a remote marketing position that got listed on the company website the same day I applied. Had an interview within 48 hours!

Sarah J. — Sarah J. · Marketing Manager ★★★★★ Verified