{"id":"7043986929","title":"Associate Director, Security & Compliance (US)","posted_at":"2026-04-30T17:15:11.000Z","apply_url":"https://job-boards.greenhouse.io/codeandtheory/jobs/8468771002","locations":["New York, NY"],"employment_type":"full_time","workplace_type":null,"seniority_level":"senior","description_language":"en","source_name":"greenhouse","source_url":"https://www.codeandtheory.com/careers/8468771002?gh_jid=8468771002","salary":{"min":140000,"max":175000,"currency":"USD","period":"year","display":"$140,000–$175,000"},"job_summary":"Code and Theory is a digital-first creative agency that sits at the center of creativity and technology. The Associate Director, Security & Compliance will lead security, privacy, and compliance strategies for SaaS products and client projects.","job_description":{"responsibilities":["Lead security program strategy and outcomes for SaaS products and client projects","Manage SOC 2 Type II, ISO 27001, and ISO 42001 readiness and compliance","Oversee privacy governance including HIPAA, GDPR, and CCPA/CPRA compliance","Partner with delivery teams to embed security and privacy into development processes","Establish client engagement security plans and conduct vendor security reviews","Support customer assurance efforts and maintain trust artifacts","Maintain incident response programs and drive continuous improvement"],"minimum_qualifications":["8+ years of progressive experience in information security","Strong understanding of modern application and cloud security fundamentals","Demonstrated ownership of SOC 2 Type II and ISO 27001 programs","Working knowledge of privacy requirements including HIPAA, GDPR, and CCPA/CPRA","Experience building security and privacy processes in delivery environments","Clear communication skills for internal and external stakeholders","Ability to coordinate work across geographically dispersed teams"],"preferred_qualifications":["Experience in an agency or consulting environment","Experience supporting AI-enabled products and ISO 42001","Expertise in GCP, AWS, or Azure","Experience with security monitoring, incident response, and vulnerability management","Hands-on experience with security tooling across CI/CD and cloud infrastructure","Relevant certifications such as CISSP, CISM, CCSP, CIPP, or CIPT"]},"visa_sponsorship":null,"experience_years_min":8,"job_address":null,"job_city":"New York","job_state":"NY","job_country":"US","location_lat":40.712749,"location_lng":-74.005994,"keywords":["infrastructure","collaboration","documentation","communication","stakeholders","Collaborate","distributed","engineering","operations","monitoring","encryption","production","engagement","priorities","compliance","Microsoft","standards","workflows","strategy","security","Platform","business","consumer","customer","internal","external","privacy","design","global","teams","CI/CD","Azure","SaaS","data","GCP","AWS","AI"],"company":{"name":"Code and Theory","logo_url":"https://img.logo.dev/codeandtheory.com?token=pk_fWx5G5QrQMm-0Ud8BW3mBg&size=64&format=png","description":"Code and Theory is a digital-first creative agency that provides technology and design solutions to help Fortune 100 clients solve business problems and establish new capabilities.","website_url":"https://www.codeandtheory.com/","linkedin_url":"https://www.linkedin.com/company/codeandtheory","glassdoor_url":null,"x_url":"https://twitter.com/codeandtheory","instagram_url":"https://www.instagram.com/codeandtheory/","youtube_url":null,"github_url":null,"huggingface_url":null,"tiktok_url":null,"crunchbase_url":null,"facebook_url":null,"employee_count_range":"1001-5000","employee_count":1001,"founded_year":2001,"headquarters":{"address":"One World Trade Center, 69th Floor, New York, NY 10007, United States","city":"New York, NY","country":"US","lat":40.7128,"lng":-74.006},"industry":"consulting","company_type":"agency","total_funding_usd":null,"locations":["Bengaluru, India","London, United Kingdom","Manila","New York, NY"]}}