Head of Information Security & Privacy jobs in United States
cer-icon
Apply on Employer Site
company-logo

Blueflame AI · 1 week ago

Head of Information Security & Privacy

positionNYC Metro Area
timeFull-time
remoteOnsite
seniorityLead/Staff, Director/Executive
money$119K/yr - $207K/yr
date5+ years exp

Blueflame AI is a fast-growing SaaS company that focuses on security and trust in handling sensitive data. They are seeking a Head of Information Security & Privacy to design and implement a robust security and privacy program while ensuring compliance with global regulations and maintaining key certifications.

Artificial Intelligence (AI)Financial ServicesSoftware

Responsibilities

Own and evolve the information security management system, maintaining SOC 2 Type II and leading the path to ISO 27001 certification
Implement and monitor security controls across AWS, including IAM, KMS, networking, and logging
Partner with engineering to embed security in the SDLC: threat modelling, secure coding, vulnerability management, and DevSecOps practices
Lead risk assessments, incident response, and vendor security reviews, ensuring timely and pragmatic remediation
Maintain and continuously improve security and privacy policies, aligning them with global regulations and client requirements
Support privacy compliance (GDPR, CCPA, and similar), including data mapping, retention, and cross-border transfer considerations
Oversee security reviews and due-diligence requests from clients, auditors, and partners
Stay ahead of emerging threats and regulatory changes, translating them into actionable guidance
Champion security awareness and training across the company

Qualification

Information Security ManagementAWS Security ArchitectureRisk ManagementPrivacy ComplianceSecurity CertificationsProactive MindsetCommercial MindsetCommunication

Required

5–8 years' experience in information security, cloud security, or risk management, ideally within a SaaS environment
Solid knowledge of AWS security architecture and best practices
Experience embedding controls into a modern SDLC (e.g., CI/CD, GitHub Actions, IaC)
Working understanding of privacy and data protection frameworks (GDPR, CCPA, etc.)
Familiarity with generative AI / LLM architectures and associated security and data-governance risks
Strong communicator who can explain complex security issues in plain business terms
Commercial and pragmatic mindset — able to balance protection with agility
Hands-on, proactive, and comfortable working independently in a fast-moving environment

Preferred

Relevant certifications (AWS Security Specialty, CISSP, CISM, ISO 27001 Implementer, CIPP/E) a plus

Benefits

Health insurance (medical, dental, vision)
A retirement savings plan
Paid time off
Other employee benefits

Company

Blueflame AI

twittertwitter
company-logo
BlueFlame AI is an artificial intelligence for alternative investment managers.
dateFounded in 2023
location
London, England, GBR
people-size51-200 employees
web-link
https://www.blueflame.ai

Funding

Current Stage
Growth Stage
Total Funding
$5M
2025-07-23Acquired
2024-06-25Series A· $5M

Leadership Team

leader-logo
Edward Chu
Chief Technology Officer at Blueflame AI | Data and Intelligence @ Datasite
linkedin
leader-logo
Eric Levenson
Head of Sales
linkedin

Recent News

The European Financial Review
Using M&A to Secure AI integration
2025-09-02
Twin Cities
Business People: Great Clips promotes Rob Goggins to CEO
2025-08-24
Pulse 2.0
Datasite Buys Agentic AI Company Blueflame
2025-07-26
Company data provided by crunchbase