Director of Security

Citrine is seeking an experienced Director of Security to own end-to-end strategy and operations of all data security and compliance across our global workforce and customer base.

About the Company

At Citrine we’re using generative Artificial Intelligence to enable our customers to usher in the next generation of sustainable high-performing materials and chemicals. We’re the leader in AI for materials and chemicals.

Our no-code SaaS platform gives product developers researchers and engineers access to domain-specific data management and AI tools. Our models propose new ways to combine ingredients and processes that are most likely to outperform helping companies discover and deploy innovative sustainable high-performing materials and chemicals up to 98% faster than traditional R&D approaches.

Citrine regularly wins awards for innovation and sustainability earning spots on the CB Insights AI 100 list and the Inc. 5000 list of fastest-growing private companies in the US. Our customers include leading organizations such as LyondellBasell Braskem Grace Synthomer and Syensqo. We also collaborate with researchers from world-renowned institutions on cutting-edge research at the intersection of AI and the physical sciences. Our team is ambitious with our goals passionate about our vision driven by our sustainability mission and eager to grow and learn from each other. We’re headquartered in California with team members throughout North America and Europe. We’re growing quickly and we’re looking for the best to join us!

About the Role

Citrine is seeking a dynamic customer-focused Director of Information Security to lead our security strategy and operations. Reporting directly to the CEO and working closely with executive and technical leadership customer-facing teams and stakeholders to align our infosec policies and practices with compliance and business needs this role is ideal for a candidate who can own our security position from end to end. Our Director of Security plays a pivotal role in Citrine’s success: Responsibility for continued compliance with ISO 27001 and future certifications as well as flawless management of secret customer data Citrine’s SaaS platform applications and our data and communications infrastructure. Promotes the security awareness and culture at the company while monitoring the security landscape and adapting accordingly.Serves as the go-to resource for our commercial teams in building trust with our customers and as a credible advocate explaining and evangelizing our internal security management practices.Develops and implements efficient and automated security processes. This role is responsible for all the processes and procedures to support evolving business requirements around compliance cybersecurity risk management continuity and emergency response planning and ensures compliance at all levels of the organization. The successful candidate is an experienced operator who leads by influence and thrives in autonomy and complete ownership managing our risk and vulnerabilities.

Responsbilities

• Strategic Security

• Guide strategic investment in SaaS platform security technology.

• Adopt and adapt a security framework that includes a road map assessment vulnerability management gathering and reporting security metrics develop and manage budget and investments.

• Understand Citrine’s current and emerging needs and be able to match those needs with effective and efficient solutions.

• Simplify systems automate and reduce the manual management of security processes while maintaining a very strong security posture.

Security Awareness

• Influence promote and enhance the security awareness culture of the organization including educational programs that support alignment and adoption of Infosec practices across the company.

• Own continuous innovation improvement and communication of all security processes and procedures.

• Communicate and collaborate with senior managers to align on expectations while fostering a supportive and contributing environment that encourages innovation adoption and improvement.

• Manage the security team encouraging innovation and improvement as well as professional growth.

Security Compliance

• Own the security compliance practice: maintain our certification in ISO27001 GDPR and other programs.

• Ensure compliance with relevant laws regulations and standards around information security; understand obligations of different authorities and frameworks to support growth.

• Build a system for engaging with our technology and product teams to effectively introduce and implement new application and security concepts into the platform.

• Maintain investment in any additional efforts required to ensure excellence in all aspects of security.

Security Operations

• Develop innovate implement and monitor all policies and procedures that keep Citrine and our customers safe.

• Oversee daily security operations including coordinating across the organization at all levels and advising around best practices and developments.

• Handling and coordinating responses to security incidents such as breach attack loss and subsequent review of policies and education.

• Auditing and reporting managing compliance audits and working with customers and regulators to demonstrate compliance and resolve issues.

• Lead the security organization and continue to build and cultivate a world-class team.

Skills and Experience

• 10+ years experience in security-related positions and managing a security team preferably in a SaaS cloud-based environment.

• Proven experience establishing security best practices and procedures for information security and security compliance.

• Communications excellence and customer-first mentality: innovate inspire and influence on security excellence across the entire company and with external stakeholders.

• Direct experience advocating for security needs to technical and non-technical stakeholders internally and externally.

• Willing to be on call and available 24/7 for emergencies.

Equal Opportunity

All qualified applicants will receive consideration for employment without regard to race creed color or national origin.

Our Core Values

Citrine Informatics recognizes that its most valuable asset is its people. We have created our set of Core Values to encourage support and invest in our team as they work to innovate and support a more sustainable world. Our Core Values reflect our ongoing commitment to continuously invest in nurturing our talent and our people-first approach to conducting business.

- We take pride in and recognize the successes and growth of ourselves and our colleagues. We support each other in our growth .

- We prototype and collect data to make good decisions. We question that data and are constantly iterating to find the best solution.

- We are all owners of Citrine and make decisions like owners. We work autonomously with personal and organizational accountability.

- We commit to building a diverse and inclusive community within Citrine and actively promote equity and belonging.

- We are tirelessly committed to creating value for our customers .

- We exist to help our customers accelerate the development of sustainable products that are critical to the future of both our planet and our industry.

Compensation and Pay Transparency

At Citrine we want your path to career growth to be transparent straightforward fair and easily accessible -- starting with your application and interview process. The annual salary range listed below reflects the level we are considering for this position (please note that there may be unique situations where you may fall outside of this range). Where you fall within the range will depend on how your experience and skills align with our internal leveling system as we learn more about you throughout the interview process.

$170000 USD - $230000 USD

Accommodations

Citrine is an inclusive work environment and we are committed to ensuring equal opportunity in employment for qualified persons with disabilities. Please email us at [email protected] or inform your recruiter if you require any reasonable accommodations throughout the recruiting process.

Our Benefits (for exempt full-time employees based within the United States)

4 different medical benefit plan options

Dental Vision FSA and HSA plans

4% 401k company match

Personal financial advisor and basic free legal guidance

$5000 annual continuing education budget

$600 equipment budget

Unlimited PTO and 15 holidays

12 weeks of paid parental leave

Company-sponsored personal development courses

Mentoring Program (internal and external)

Monthly DE&I events

Swag parties entertainment budget

FLEX hours and location