We're seeking a Head of Security to own and evolve Avantos's security and compliance posture as we scale with enterprise financial services customers.
Avantos is building the industry's first AI-native operating system for financial services, redefining how firms onboard clients, deliver advice, and manage core servicing workflows. Our platform unifies fragmented data, automates complex processes, and embeds intelligent decision-making across every step of the client lifecycle.
We partner with leading financial institutions and are scaling rapidly. We're an execution-driven, design-obsessed, product-led team composed of founders and leaders from Wharton, MIT, top design programs, and prior unicorn SaaS companies. We move fast, solve deep industry problems, and build technology that puts users back in control of their workflows.
If you love client impact, product design, complex problem solving, and bringing AI-enabled change to real-world businesses, Avantos is where you will thrive.
We're seeking a Head of Security to own and evolve Avantos's security and compliance posture as we scale with enterprise financial services customers. This is a director-level, hands-on leadership role — ideal for someone who has built pragmatic security programs in modern cloud-native startups and knows how to balance rigor with execution speed.
You will be responsible for ensuring our platform, infrastructure, and internal processes meet the expectations of regulated enterprise customers today (SOC 2) while laying the groundwork for future expansion into additional regulatory environments, including the EU.
Own and maintain our SOC 2 compliance program , including audits, evidence collection, control design, and continuous improvement
Define a forward-looking security and compliance roadmap (e.g., GDPR, ISO 27001) aligned with company growth and customer needs
Serve as the primary security leader and point of contact for executives, auditors, partners, and enterprise customers
Design and enforce security best practices across our AWS-based, containerized (ECS) infrastructure , including strong isolation for our single-tenant-per-customer architecture
Partner closely with engineering to embed security into system design, SDLC, and operational workflows
Own incident response planning, tabletop exercises, and real-world response coordination
Lead risk assessments, vendor security reviews, and customer security questionnaires
Develop and maintain security policies, standards, and internal documentation appropriate for a regulated environment
Promote a strong security culture through training, awareness, and cross-functional collaboration
Act as a trusted advisor to the leadership team on security tradeoffs, risk, and investment priorities
Over time, help scale security processes, tooling, and potentially team members as the company grows
6–10+ years of experience in security, with leadership responsibility in a startup or high-growth SaaS environment
Direct ownership of SOC 2 compliance in a cloud-native company
Strong understanding of AWS security , IAM, networking, logging, and monitoring
Experience securing containerized workloads (ECS, Kubernetes, or similar) and modern SaaS architectures
Familiarity with secure software development practices and application security concepts
Ability to translate regulatory and customer requirements into practical, implementable controls
Strong communication skills — comfortable working with engineers, executives, auditors, and customers
Pragmatic, business-aligned mindset focused on real risk reduction rather than checkbox compliance
Relevant certifications (CISSP, CISM, CCSP)
Experience in financial services or other highly regulated industries (working directly with enterprise security teams as a service provider)
Exposure to GDPR, ISO 27001 , or international regulatory frameworks
Experience supporting enterprise security reviews and customer-driven compliance requirements
Familiarity with vulnerability management tooling, security monitoring, and cloud security posture management
Familiarity with modern SaaS stacks and AI-enabled platforms
Competitive compensation + meaningful equity
Opportunity to define and scale the security foundation of a rapidly growing AI platform in financial services
Direct impact and visibility at the executive level
A culture optimized for ownership, focus, and high-quality execution
Remote work flexibility with a preference for NYC-based collaboration
Head of Security • United States
At CDW, we make it happen, together.Trust, connection, and commitment are at the heart of how we work together to deliver for our customers.It’s why we’re coworkers, not just employees.Coworkers wh...[internal_linking.show_more]
Onebrief is collaboration and AI-powered workflow software designed specifically for military staffs.By transforming this work, Onebrief makes the staff as a whole superhuman - meaning faster, smar...[internal_linking.show_more]
The Infrastructure Security Practice Manager plays a key role at DirectDefense as a leader on our technical team, directing the execution of penetration testing, adversary emulation, and vulnerabil...[internal_linking.show_more]
Doctor of Medicine | Psychiatry - General/Other.Competitive weekly pay (inquire for details) .LocumJobsOnline is working with CompHealth to find a qualified Psychiatry MD in Independence, Kansas, 6...[internal_linking.show_more]
We're building a world of health around every individual - shaping a more connected, convenient and compassionate health experience.At CVS Health®, you'll be surrounded by passionate colleagues who...[internal_linking.show_more]
Chainguard is the trusted source for open source.By delivering hardened, secure, and production-ready builds of all the open source software engineers and AI agents rely on, Chainguard helps organi...[internal_linking.show_more]
The world's most sophisticated companies rely on AlphaSense to remove uncertainty from decision-making.With market intelligence and search built on proven AI, AlphaSense delivers insights that matt...[internal_linking.show_more]
Competitive weekly pay (inquire for details) .AlliedTravelCareers is working with Aequor to find a qualified Occupational Therapist (OT) in Neodesha, Kansas, 66757!.With Aequor, you can enjoy the f...[internal_linking.show_more]
The VP, Security Engineering Programs & Controls will lead modernization of the Information Security Engineering control landscape, ensuring a complete vision for control coverage and standardizati...[internal_linking.show_more]
At CDW, we make it happen, together.Trust, connection, and commitment are at the heart of how we work together to deliver for our customers.It's why we're coworkers, not just employees.Coworkers wh...[internal_linking.show_more]
We are looking for a highly skilled Principal Security Engineer with a passion for building the future of autonomous security operations into Stellar Cyber’s Open XDR platform.You will join a missi...[internal_linking.show_more]
At CDW, we make it happen, together.Trust, connection, and commitment are at the heart of how we work together to deliver for our customers.It's why we're coworkers, not just employees.Coworkers wh...[internal_linking.show_more]
Replit is the agentic software creation platform that enables anyone to build applications using natural language.With millions of users worldwide, Replit is democratizing software development by r...[internal_linking.show_more]
At Anchorage Digital, we are building the world's most advanced digital asset platform for institutions to participate in crypto.Anchorage Digital is a crypto platform that enables institutions to ...[internal_linking.show_more]
As the Head of Technology, you will be the visionary architect of our digital landscape.You will bridge the gap between human potential and technological power, ensuring our platforms empower our p...[internal_linking.show_more]
At World Wide Technology, we work together to make a new world happen.Our important work benefits our clients and partners as much as it does our people and communities across the globe.WWT is dedi...[internal_linking.show_more]
Akoya is an API-based network backed by major financial institutions that creates a safer and more transparent way for people to safely send their personal financial data to third-party financial a...[internal_linking.show_more]
As a Principal Security Consultant, you will function as a Security Advisory Services lead Security Consultant for ePlus service solutions, reporting to the Managing Security Consultant, to drive A...[internal_linking.show_more]
