Director of Security Operations

About Phaidra

Phaidra is building the future of industrial automation.

The world today is filled with static, monolithic infrastructure. Factories, power plants, buildings, etc. operate the same they've operated for decades — because the controls programming is hard-coded. Thousands of lines of rules and heuristics that define how the machines interact with each other. The result of all this hard-coding is that facilities are frozen in time, unable to adapt to their environment while their performance slowly degrades.

Phaidra creates AI-powered control systems for the industrial sector, enabling industrial facilities to automatically learn and improve over time. Specifically:

• We use reinforcement learning algorithms to provide this intelligence, converting raw sensor data into high-value actions and decisions.
• We focus on industrial applications, which tend to be well-sensorized with measurable KPIs — perfect for reinforcement learning.
• We enable domain experts (our users) to configure the AI control systems (i.e. agents) without writing code. They define what they want their AI agents to do, and we do it for them.

Our team has a track record of applying AI to some of the toughest problems. From achieving superhuman performance with DeepMind's AlphaGo, to reducing the energy required to cool Google's Data Centers by 40%, we deeply understand AI and how to apply it in production for massive impact.

Phaidra is based in the USA but 100% remote; we do not have a physical office. We hire employees internationally with the help of our partner, OysterHR. Our team is currently located throughout the USA, Canada, UK, Norway, Italy, Spain, Portugal, and India.

**Please only apply to one opening. If you are a better fit for another opening, our team will move your application. Candidates who apply to multiple openings will not be considered.**

Who You Are

The Director of Security Operations is a strategic leader focused on ensuring Phaidra’s security capabilities are operating effectively continuously. You will play a critical role in safeguarding Phaidra’s assets, infrastructure, and operations. In this role, you will be responsible for overseeing the day-to-day operations of our security program, including threat detection, vulnerability management, incident response, threat intelligence and security automation. You will be responsible for engaging with our customers on all things related to security. You will be the lead of the security team, providing guidance and direction to a team of security professionals and collaborating with other departments across the organization.

We are seeking a team member located within one of the following areas: USA

Responsibilities

• Provide strategic direction and leadership to security operations, enterprise security & cloud security functions, aligning them with Phaidra’s overall objectives and risk tolerance.
• Oversee the day-to-day operations of the security team, including monitoring security events, managing incidents, and coordinating responses to security threats and breaches.
• Ensure our compliance and continued accreditation with SOC2, GDPR, ISO27001 and other programs, as required.
• Engage with and present to our customers on all things Phaidra security.
  • Communicate our security posture effectively to customers, tailoring your approach for C-suite, IT, Security, and Operations teams as appropriate.
  • Lead the response to risk and security questionnaires as required by customers and maintain a questionnaire answer repository.
• Provide security expertise to our product development efforts by following secure by default principles to integrate appropriate security controls into Phaidra’s products. Collaborate with product teams on security solutions.
• Establish, implement and manage a coverage plan with defined service level objectives, well-understood outcomes, and effectiveness tracking, to ensure potential issues are discovered and resolved in a timely manner.
• Develop and maintain a comprehensive enterprise and cloud security architecture and procedure for the organization, encompassing network security, endpoint security, cloud security, and other critical areas.
• Identify, assess, and mitigate security risks across the company, utilizing risk assessment methodologies and implementing appropriate controls and countermeasures.
• Own Phaidra’s Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), Intrusion Detection System (IDS), and optimize tools and processes to identify and prioritize threats and vulnerabilities.
• Implement and optimize security monitoring tools and processes to identify and prioritize threats. Implement and optimize a vulnerability management program to identify, assess, and prioritize vulnerabilities, and ensure timely patching.
• Promote a culture of security awareness throughout the organization by providing training, educational materials, and awareness campaigns to employees at all levels.
• Establish key performance indicators (KPIs) and metrics to measure the effectiveness of security operations and enterprise security programs, providing regular reports and updates to senior management.
• Drive a culture of continuous improvement and innovation within the security organization, identifying opportunities to enhance security posture, streamline processes, and adopt emerging best practices.
• Develop incident response plans and lead efforts to investigate and mitigate security incidents, collaborating with internal teams and external partners as needed.
• Ensure compliance with relevant laws, regulations, and industry standards related to information security and privacy, maintaining documentation and reporting as required.
• Develop and manage the security budget for the sec ops function, allocating resources effectively to support security initiatives, projects, and operational needs.
• Build and lead a high-performing team, provide coaching and mentorship, and ensure individual and team success.
• Work effectively and regularly with IT, Operations, Legal, and Infrastructure Engineering, and work cross-functionally with other departments to ensure security considerations are integrated into all business processes.
• Communicate security-related threats, information, and changes clearly and succinctly across the company.

Onboarding

In your first 30 days…

• You will be immersed in an onboarding program that introduces you to Phaidra and our product.
• Integrate into the Phaidra team, understanding our product, technologies, security posture, and business goals.
• Get to know the security team and security council, both of which you’ll be leading. Associated transition activities will be completed.
• Begin building relationships across the company, establishing yourself as a foundational resource on security.
• Begin familiarizing yourself with our security and secops systems, processes and controls; identify areas for enhancement and development.
• Begin building relationships with our external vendors and auditors.
• Meet with our sales, customer success, and other teams who interact with our customers to gain an understanding of customer security requirements.
• Review and understand all of our security policies and processes and document areas for improvement or change.

In your first 60 days…

• Engage with our engineering and product teams to grasp the intricacies of our technology and its security implications.
• Outline a strategic and detailed tactical plan for how you’d like to evolve our security approach, actions that need to be taken, and how you’ll run the team (including defining and implementing SLAs for security requests).
• Upon review and approval by the COO, revise all policies and processes to reflect how you’d like security to be run at Phaidra.
• Meet with our current customers and understand their security requirements directly.
• Begin assisting with departmental level security needs.

In your first 90 days…

• Finish executing the plan put in place during your first 60 days.
• Clear definition of security roadmap for the next 12 months defined based on areas of improvement identified. Roadmap will include all recurring activities per our security policies.
• Fully take over security leadership responsibilities held by others currently managing in a fractional capacity.
• Demonstrate that you can represent Phaidra’s security and compliance expertise with our customers — building their trust in our product and services from a security perspective.
• Position the security team as a proactive, strategic partner within the company.
• Build a security awareness program that drives security thinking across Phaidra.
• Define your team’s OKRs for the following quarter based on the action plan and roadmap you’ve developed since starting.

Key Qualifications

• 10+ years of progressive technical experience in security operations, enterprise security, and cloud security roles and 5+ years of management experience.
• Experience with securely connecting closed systems to the public internet.
• Experience with secure by default concepts for product development.
• Understanding of security technologies, frameworks, and best practices related to cloud platforms (e.g., GCP, AWS), network security, identity and access management (IAM), encryption, data protection, and compliance.
• Experience communicating complex technical security requirements in a way that is understandable, clear, and reassuring to enterprise customers including C-Suite, IT, Security, and Operations personnel.
• Strong leadership experience with a proven track record of leading and managing teams, developing and executing security strategies, and driving results in complex and dynamic environments.
• Proven experience in incident response, threat detection, threat modeling, vulnerability management, security automation, and threat intelligence analysis.
• Experience working in a Zero Trust focused security program.
• Experience working with MacOS endpoint security.
• Strong understanding of security best practices and frameworks (e.g., MITRE ATT&CK, NIST Cybersecurity Framework).
• Excellent communication and interpersonal skills, with the ability to collaborate with internal stakeholders, executive leadership, cloud providers, external partners, customers, and employees.
• Strong analytical and problem-solving skills to identify security risks, assess their potential impact, and develop effective mitigation strategies.
• A thorough understanding of relevant laws, regulations, and industry standards pertaining to cybersecurity and cloud security in a global organization (e.g., CCPA/CPRA, GDPR).

Preferred Skills & Experience

• Relevant certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CCSK (Certificate of Cloud Security Knowledge).
• Experience with Vanta and Rippling.

General Interview Process

All of our interviews are held via Google Meet, and an active camera connection is required.

1. Interview with Hiring Manager (30 minutes): The purpose of this interview is for you to get to know the manager for the role. This chat will mainly focus on your previous experience and career goals. You can expect to talk about projects that you have worked on in the past, how you think through problems, and ask any questions about the team & role.
2. Interview with Operations team member (30 minutes): The purpose of this interview is to meet you, learn more about your background, and discuss what you are looking for in a new position.
3. Interview with Infrastructure and Security (45 minutes): The purpose of this interview is to gauge technical understanding and the ability to grok on the software/engineering /infrastructure/secops side.
4. Interview with Corporate Development and Connectivity (30 minutes) The purpose of this interview is to evaluate your skillset from a customer-facing perspective.
5. Culture fit interview with Co-Founders (30 minutes): This interview focuses on alignment with Phaidra’s values.

Base Salary

• United States Residents: $165,000-$238,800/ year

This position will also include equity.

These are best faith estimates of the base salary range for this position. Multiple factors such as experience, education, level, and location are taken into account when determining compensation.

Benefits & Perks

• Fast-paced and team-oriented environment where you will be instrumental in the direction of the company.
• Phaidra is a 100% remote company with a digital nomad policy.
• Competitive compensation & equity.
• Outsized responsibilities & professional development.
• Training is foundational; functional, customer immersion, and development training.
• Medical, dental, and vision insurance (exact benefits vary by region).
• Unlimited paid time off, with a minimum of 20 days off per year requirement.
• Paid parental leave (exact benefits vary by region).
• Home office setup allowance, coworking space stipend, and company MacBook.

*Please not that Phaidra’s benefits and perks listed above do not apply to temporary employees such as interns. 

On being Remote

We are thoughtful about remote collaboration. We look to the pioneers - like Gitlab - for inspiration and best practices to create a stellar remote work environment. We have a documentation-first culture and actively practice asynchronous communication in everything we do. Our team stays connected through tools like Slack and video chat. Most teams meet daily, and we have dedicated all-hands meetings weekly to build strong relationships. We hold virtual team building events once per quarter - and even hold virtual socials to watch rocket launches! We have a yearly in-person, all-company summit in locations like Seattle, Athens, Goa, and Barcelona.

Equal Opportunity Employment

Phaidra is an Equal Opportunity Employer; employment with Phaidra is governed on the basis of merit, competence, and qualifications and will not be influenced in any manner by race, color, religion, gender, national origin/ethnicity, veteran status, disability status, age, sexual orientation, gender identity, marital status, mental or physical disability, or any other legally protected status. We welcome diversity and strive to maintain an inclusive environment for all employees. If you need assistance with completing the application process, please contact us at hiring@phaidra.ai.

E-Verify Notice

Phaidra participates in E-Verify, an employment authorization database provided through the U.S. Department of Homeland Security (DHS) and Social Security Administration (SSA). As required by law, we will provide the SSA and, if necessary, the DHS, with information from each new employee’s Form I-9 to confirm work authorization for those residing in the United States.

Additional information about E-Verify can be found here.

#LI-Remote

WE DO NOT ACCEPT APPLICATIONS FROM RECRUITERS.