Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Director of Security & IT

$226k - $275k

Social Leverage

Founded in 2019, Nayya is on a mission to connect people’s most important information, so they can thrive in their health and wealth. Powered by AI and advanced analytics, Nayya’s platform transforms complex benefits experiences into intuitive, seamless, and ongoing interactions—meeting people's real world needs. As a trusted platform and partner to leading employers, benefits solutions, and HR tech providers, Nayya unlocks long-term value through helping employees live more resilient lives. Backed by strategic investors like ICONIQ, Felicis Ventures, SemperVirens, Workday Ventures, MetLife Nextgen Ventures, and ADP Ventures, Nayya is ushering in the future of health and wealth for all. Role Summary: We are seeking a Director of Security & IT to lead Nayya's security strategy, compliance programs, and IT operations. This role will serve as the single point of accountability for protecting sensitive health and financial data, maintaining regulatory compliance, and ensuring the reliability and security of internal technology systems. Nayya is a benefits intelligence platform serving approximately 5 million employees. Our AI-powered platform delivers personalized guidance grounded in real plan data and claims history. The security and compliance requirements of this environment are significant: we handle Protected Health Information (PHI) at scale and operate under HIPAA, SOC 2, and other regulatory frameworks. This role reports to the Chief Product & AI Officer. The Director of Security & IT will partner closely with Engineering on infrastructure security while maintaining independent ownership of the security program, compliance posture, and IT operations. Key Responsibilities Security Program Leadership Lead the design, implementation, and continuous improvement of a comprehensive security program spanning application security, infrastructure security, data protection, and incident response. Implement and manage vulnerability assessments, penetration testing, and security audits to identify and mitigate risks across IT infrastructure and systems. Develop and maintain security policies, procedures, and controls aligned to SOC 2 Type II and HIPAA Security Rule requirements. Coordinate response to security incidents, including root cause analysis, containment, remediation, and legal reporting requirements. Own identity and access management (IAM) strategy, ensuring least-privilege access controls across production systems, cloud environments, and internal tools. Implement encryption, access control, audit logging, and other technical safeguards to meet HIPAA security requirements for data at rest, in transit, and during processing. Compliance & Risk Management Own SOC 2 Type II compliance initiatives, including audit preparation, controls documentation, evidence collection, and remediation of findings. Ensure compliance with HIPAA Privacy and Security Rules across Nayya's handling of PHI, including technical safeguards and organizational policies. Develop and maintain a risk management framework that identifies, evaluates, and prioritizes security and compliance risks, ensuring alignment with applicable regulations. Conduct regular risk assessments and vulnerability scans to proactively address potential compliance gaps. Prepare for and manage regulatory audits, customer security assessments, and external inspections related to data security and privacy. Stay current on emerging trends in healthcare data privacy regulations (HIPAA, HITECH, state-level requirements) and assess their impact on company policies and procedures. IT Operations & Help Desk Services Oversee day-to-day IT operations, ensuring all systems, networks, and applications function effectively and securely with minimal downtime. Lead the internal IT help desk function, ensuring timely resolution of technical issues with clear escalation protocols and service level agreements (SLAs). Monitor help desk performance metrics and implement improvements based on organizational needs. Manage IT asset lifecycle, including procurement, tracking, maintenance, and compliance with company policies. Ensure effective onboarding and offboarding processes for IT systems, with a focus on security awareness and HIPAA compliance training. Vendor & Third-Party Risk Management Evaluate and manage relationships with cloud providers, vendors, and third-party services to ensure they meet HIPAA and SOC 2 security and privacy requirements. Conduct due diligence and security assessments of third-party vendors, ensuring alignment with Nayya's data protection and compliance standards. Negotiate and manage contracts and SLAs to ensure third-party vendors meet security, compliance, and privacy expectations. Cross-Functional Collaboration Partner closely with the VP of Engineering on cloud security, infrastructure hardening, disaster recovery, and production access controls. Work with Legal, Finance, and People teams to ensure security and data privacy strategies align with business operations and legal obligations. Serve as the primary security and compliance liaison for enterprise customers, partners, and prospects during due diligence and procurement processes. Act as a strategic advisor to senior leadership on security investments, balancing risk mitigation against operational constraints and business priorities. Provide regular reports to the executive team on the status of security initiatives, compliance posture, and audit results. Lead, mentor, and develop a team of security, IT, and compliance professionals. Foster a culture of continuous improvement to stay ahead of cybersecurity threats and regulatory changes. Provide training to team members and the broader organization on security best practices, with emphasis on HIPAA compliance and PHI protection. Qualifications Required 10+ years of experience in security, IT infrastructure, and compliance, with at least 3 years owning a security function in a leadership capacity. Experience at a scaling software or AI company (50-1,000 employees) with exposure to the tradeoffs of building security programs with constrained resources. Proven depth in HIPAA compliance, healthcare data protection, and SOC 2 Type II audits. Strong understanding of cloud security architecture (AWS), network security, container security, and production access patterns. Experience building or significantly maturing security and compliance programs, not solely operating existing ones. Demonstrated ability to operate cross-functionally with Engineering, Legal, Finance, and People teams, turning ambiguity into structured execution. Strong program execution skills with a track record of driving multi-quarter initiatives across security, compliance, disaster recovery, access management, and vendor risk. Sound judgment in high-trust environments involving sensitive systems, company risk, customer data, and internal operations. Strong people leadership with experience managing technical teams, setting expectations, and creating accountability. Ability and willingness to go deep in a hands-on way where needed and delegate to the team where appropriate. Experience in healthcare, benefits, fintech, or another regulated environment where data sensitivity and compliance requirements are material. Preferred Relevant certifications: CISSP, CISM, CCSP, AWS Certified Solutions Architect, or similar. SOC 2 and HIPAA-specific credentials are highly desirable. Hands-on technical capability to engage in architecture discussions, evaluate operational tradeoffs, and assess technical risk directly when needed. A bias toward simplicity and prioritization across a broad surface area, focusing effort on what materially reduces risk and improves reliability. The salary range for New York based candidates for this role is $226,000- $275,000. We use a location factor to adjust this range for candidates that are located outside of geographic region of our New York office. Placement within the salary band is determined based on experience. Nayya is proud to be an Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics Location New York, NY, USA Work Mode On-site Seniority Director Function IT Salary USD 226k-275k / year Company Size 51-200 employees Skills Audit Report Preparation Encryption Identity And Access Management Incident Response Network Security Penetration Testing Regulatory Compliance Risk Management Security Strategies Team Leadership Vulnerability Assessments #J-18808-Ljbffr Social Leverage

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Director of Security & IT in New York, NY vacancy
  • $250k

     ...Managing Director & Head of Security and Defense, Public Sector Banking page is loaded## Managing Director & Head of Security and Defense, Public Sector BankingApplylocations: New York New York United States: Reston Virginia United Statestime type: Full timeposted on:... 
    Suggested
    Full time
    Temporary work
    Work at office
    Local area

    Citibank (Switzerland) AG

    New York, NY
    2 days ago
  • $210k - $289.25k

     ...Job Summary We’re seeking a Director of Product GTM - Device Security (IoT/OT) to lead the business strategy and revenue growth for Palo Alto Networks' IoT and OT security offering across the North America Eastern region. This high-impact, revenue-focused role blends... 
    Suggested

    Palo Alto Networks, Inc.

    New York, NY
    2 days ago
  • $75k - $85k

     ...time. The majority of these clients are diagnosed with mental illness, some dually with chemical addictions as well. Position Director of Security & Operations Reports To: Vice President Location: Brooklyn, NY What The Director of Security & Operations Does The person... 
    Suggested
    Permanent employment
    Full time
    Contract work
    Immediate start

    CAMBA

    New York, NY
    4 days ago
  • $170k - $210k

     ...A leading security consultancy in the United States is seeking a Security Operations Leader to drive their global operations strategy. This role involves leading a high-performing team for 24/7 security monitoring, incident response, and ensuring regulatory compliance... 
    Suggested

    The Security Executive Council

    New York, NY
    3 days ago
  • $80k

     ...and providing the support you need to advance your career while making a meaningful difference in people’s lives. Title Director of Operations & Security Reports to Regional Director Pay Range $80,000 -80,000 per year FLSA Status Exempt Status Full-time (35 hour per week)... 
    Suggested
    Permanent employment
    Full time
    Temporary work
    Work at office
    Local area
    Trial period
    Monday to Friday
    Shift work

    Naicany

    New York, NY
    3 days ago
  •  ...Director of Global IT DevOps & AI Infrastructure Remote - US Endeavour has an exciting opportunity for someone passionate about sustainability...  ...to take full ownership of how technology is built, deployed, secured, and scaled across the organization. This role is part of... 
    Full time
    Part time
    For contractors
    Remote work

    Endeavour. Inspired Infrastructure.

    New York, NY
    3 days ago
  • $180k - $220k

     ...under the radar by design Human trading combined with extremely strong machine/algorithmic technology Director of IT Job Description Summit Securities Group provides liquidity and transparency to electronic financial markets across the globe. Their skilled team... 
    Work at office
    Local area

    Collabera Digital

    New York, NY
    2 days ago
  • $70k

     ...Job Description Job Description DIRECTOR OF SECURITY We are excited to invite a dedicated and experienced Director of Security to join our team! Homes for the Homeless (HFH) is searching for a Director of Security for our Families w/ Children facility located... 
    Permanent employment
    Full time
    Work at office
    Local area
    Monday to Friday
    Shift work

    HOMES FOR THE HOMELESS, INC

    New York, NY
    8 days ago
  • $77.36k - $87.36k

     ...Job Description Job Description ARROW SECURITY is one of the largest privately held security guard companies in the United States...  ...our continued growth and mission focus we are looking to add a  Director of Security  to support one of our prestigious clients in New York... 
    Local area

    Arrow Security

    New York, NY
    17 days ago
  •  ...Job Description Columbia Grammar and Preparatory School in New York City has engaged DovetailED to lead a search for a  Director of Security to start in August 2026. Interested candidates should review the Opportunity Statement and submit a cover letter, resume, and... 

    Columbia Grammar & Preparatory School

    New York, NY
    4 days ago
  •  ...technology organizations. Strong expertise in enterprise architecture, IT infrastructure, and cloud platforms, including AWS, Google Cloud...  ..., enterprise systems, and ensure employees have reliable, secure, and efficient technology tools. Develop and execute a... 
    Permanent employment

    Itlearn360

    New York, NY
    1 day ago
  •  ...Assistant Director of Security The New York County District Attorney's Office (DANY) has an opening for an Assistant Director of Security in its Investigation Bureau. In this position, with some latitude for independent judgment and initiative, the Assistant Director... 
    Temporary work
    Work at office
    Monday to Friday
    Flexible hours
    Shift work
    Weekend work

    New York City | Jobs

    New York, NY
    15 hours ago
  •  ...Job Description Job Description PRIMARY FUNCTION/PURPOSE The Director of Building Security provides oversight of the shelter’s security operational functions, supporting the efficient and satisfactory living and work environment of the facility. This individual... 
    Full time
    Contract work
    Temporary work
    Live in
    Work at office
    All shifts
    Flexible hours
    Shift work
    Night shift

    Childrens Rescue Fund

    New York, NY
    10 days ago
  • Join JPMorgan Chase as Senior Director, Architecture within Connected Commerce Technology, leading technology innovation across multiple...  ..., credential lifecycle, and fraud signals/decisioning Design secure APIs and event‑driven patterns enabling reusable trust services... 

    Fairygodboss

    New York, NY
    5 days ago
  •  ...role blends external-facing technology leadership (CTO) with internal IT and systems oversight (CIO) and will play a critical role in advancing the organization's mission, efficiency, and security. What You’ll Do Develop and execute a comprehensive technology strategy... 
    Permanent employment
    Immediate start

    Itlearn360

    New York, NY
    3 days ago
  • $140k

     ...of people we serve thereby righting societal imbalances. The Director of Security is responsible for the strategic leadership, development, and...  ...collaboratively with program, real estate, facilities, and IT to promote a safe and respectful community. Responsibilities... 
    Work at office
    Local area

    sus.com

    New York, NY
    3 days ago
  • $75k - $85k

    CAMBA is seeking a Director of Security & Operations to manage day-to-day security and operations at our facilities in Brooklyn, NY. The candidate will supervise staff, ensure compliance with security policies, and maintain a safe environment for clients. This full-time... 
    Full time

    CAMBA

    New York, NY
    1 day ago
  • Overview The Operations and Security Director works in cooperation and in conjunction with the Site Director and the Director of Social Services. The position ensures the overall operational, safety, and maintenance of the facility. In addition, must cross train the Operations... 

    Project Redirect

    New York, NY
    5 days ago
  • $200k - $240k

    Overview Director of Cloud-Native Security Operations - 245347 Medix is seeking a Director of Cloud-Native Security Operations for one of our top healthcare data clients. Our client is a non-profit healthcare services organization that owns and manages a single source... 
    Hourly pay
    Full time
    Contract work
    Remote work
    Shift work

    Medix Technology

    New York, NY
    3 days ago
  • 1 Hotels seeks a Director of Loss Prevention for its Brooklyn location. This pivotal role focuses on ensuring safety and security for guests and staff, responding effectively during emergencies, and maintaining a proactive stance on potential risks. Ideal candidates will... 

    1 Hotels

    New York, NY
    2 days ago
  • The New York Public Library is seeking an Associate Director of IT Operations to lead the architecture, deployment, and management of desktop...  ...through automation, while ensuring compliance with security standards. With a focus on modernizing the Library’s IT operations... 

    New York Public Library

    New York, NY
    3 days ago
  •  ..., CT, DE, FL, GA, HI, IL, IN, KY, MD, MA, MI, MS, NE, NV, NJ, NY, NC, OH, OR, PA, SC, TN, TX, UT, VA, WA. The Role The Director of Safety & Security is the network leader responsible for enterprise‑wide Environmental Health & Safety (EHS), physical security, loss prevention... 
    Temporary work
    H1b
    Live in
    Work at office
    Remote work
    Worldwide
    Visa sponsorship

    Cart.com

    Brooklyn, NY
    3 days ago
  • $80k - $90k

    Allied Universal in New York is seeking a Director of Operations who will oversee onsite Account Managers and ensure client satisfaction across various sectors including healthcare and government. The individual will foster employee engagement and operational excellence... 

    Allied Universal

    New York, NY
    2 days ago
  • OPSWAT, a global leader in IT, OT, and ics critical infrastructure cybersecurity, delivers...  ...to protect their complex networks, secure their devices, and ensure compliance. Over...  ...the lookout for a talented and experienced Director of Products to enhance our Storage... 
    Local area
    Flexible hours

    OPSWAT

    New York, NY
    3 days ago
  • $227k - $303k

     ...Nasdaq: CRWV) in March 2025. Learn more at What You'll Do: The Security Products team at CoreWeave is responsible for building the...  ...run large-scale AI. About the role: CoreWeave is seeking a Director of Engineering, Security Products to lead the engineering teams... 
    Permanent employment
    Temporary work
    Casual work
    Work at office
    Flexible hours

    CoreWeave

    New York, NY
    12 days ago
  • $105k - $155k

    Hyatt Hotels Corporation is seeking a Director of Security & Loss Prevention in New York City. This role involves overseeing all hotel safety operations, including investigations and compliance with laws and regulations. The ideal candidate will have at least 5 years of... 

    Hyatt Hotels Corporation

    New York, NY
    2 days ago
  • GAF is seeking a Director of Physical Security to oversee security across its facilities in the eastern United States. The role includes managing security leads, developing policies, and ensuring effective incident response and risk mitigation. The successful candidate... 

    SwiftCruit

    New York, NY
    2 days ago
  • $51k - $74k

    ## Assistant Director of Basic Needs SecurityApplylocations: Penn State University Parktime type: Full timeposted on: Posted Todayjob requisition...  ...**POSITION SPECIFICS**The **Assistant Director of Basic Needs Security** leads one of the four core pillars of Student Care & Advocacy... 
    Full time
    Work experience placement
    Internship
    Remote work

    Penn State University

    New York, NY
    5 days ago
  • $120k - $165k

     ...and 5+ years of experience in cybersecurity engineering. Responsibilities include managing the certificate lifecycle and ensuring the security of cryptographic services. A competitive salary range of $120,000 to $165,000 annually is offered. #J-18808-Ljbffr PowerToFly

    PowerToFly

    New York, NY
    2 days ago
  • Compass Pathways is seeking a Director, End User Services to lead innovative IT service delivery across the US and UK. This role focuses on scaling IT end user services while ensuring a high-quality user experience aligned with business needs and regulatory requirements... 

    Compass Pathways

    New York, NY
    1 day ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Director of Security & IT. Be the first to apply!