Head of Information Security

Security at most companies is reactive. A checkbox for auditors. A speed bump for engineers. A department that says no. Thats not what were building.

The Company

Sendbird is the #1 CPaaS platform for in-app communications an enterprise-grade infrastructure company that gives businesses the APIs and SDKs to embed real-time chat voice and video directly into their own products. Over 4000 brands trust us. Seven billion messages flow through our platform every month. 300 million monthly active users.

We powered conversations for DoorDash Match Group Noom Yahoo Sports Rakuten and thousands more. We were good at what we did. Really good.

So we asked what comes next. With decades of leadership in communications infrastructure the answer was clear: February 2025 we launched our AI agent for enterprise CX. Later that year we introduced and the name says everything about what we believe. AIs real promise isnt efficiency. It isnt cost savings. Its restoring what customer experience lost somewhere along the way: the feeling of being understood of being genuinely cared for. We dont want customers to feel satisfied. We want them to feel delighted.

The Product

is the AI concierge for customer experience. Most AI agents forget you the moment the conversation ends. Ours doesnt. builds memory over time learns preferences and connects context across every channelchat SMS email voice WhatsAppwithout losing the thread. Were building AI that makes customers feel understood seen and remembered.

Why Head of IT & Security

Were an AI company handling enterprise-grade conversations at global scale and our customers trust us with data that matters. That trust isnt a nice-to-have. Its a competitive differentiator. Its why DoorDash and Match Group chose us. Its why weve earned certifications that our competitors are still chasing.

Security here means being a partner to the business not a blocker. It means building systems that scale as fast as we do. It means someone who understands that being a 24/7 global platform demands proactive security thinkingnot just incident response. And it means someone who recognizes that AI doesnt just change our productit changes the threat surface too.

Were not looking for someone who manages security from a distance. Were looking for a practitioner who rolls up their sleeves builds programs that work well and earns trust across the engineering org by being someone people want to work with.

The Role

This reports to the CFO. Youll lead a high-functioning mature and global team located in the United States and South Korea with end-to-end accountability for Security IT and Compliance ensuring these functions work in harmony to support our global scale.

Youll inherit a world-class program thats already SOC 2 HIPAA ISO 27001 and ISO 42001 compliant. Your job is to take it further. Youll own Sendbirds comprehensive information security programs manage and evolve our compliance frameworks partner with engineering and continuously build a security culture thats embedded in how we work not bolted on as an afterthought. Youll champion defense-in-depth philosophy ensuring a multi-layered approach to security that protects our customers our data and our reputation.

Youll also own global IT Operations managing our IT infrastructure networks servers and data while supporting our expanding use of AI technology across internal systems and how we work. As the primary executive responsible for safeguarding our AI-first innovation youll scale our global internal business systems and maintain our position as the most trusted platform for the worlds most demanding enterprises.

Youll lead the team own how we secure our infrastructure respond to incidents and hold our position against an increasingly complex threat landscape. This is a hands-on builder role not a talking-head role.

You might be this person if:

• Youve built and run security programs at a B2B SaaS or cloud companynot just inherited them.
• You can walk an engineer through a threat model and walk a CFO through a risk summarywithout losing either of them.
• You are well versed in compliance frameworks (ISO 27001 SOC 2 HIPAA GDPR).
• Youve managed or mentored a global security team and taken genuine pride in developing the people around you.
• You are organized and methodical with strong attention to detail and an ability to analyze and interpret information.
• You thrive in ambiguity and build structure where none existed.
• Your instinct when something goes wrong is to fix document and improvenot assign blame.
• You treat security as a conversation with the business not a monologue at it.
• Youve started using AI tools to work fasterand youre curious about what that means for the security programs youre building.

You need to have:

• 10 years of combined experience across security management IT operations compliance or consulting.
• 3 years leading or managing a team including information security planning scheduling assignment and monitoring of staff resources in an IT function.
• Hands-on experience with audit frameworks: ISO 27001 SOC 2 and/or HIPAA/GDPR.
• Background in global B2B technology SaaS or cloud-based businesses.
• Proven track record managing security incidents end-to-end.
• Strong understanding of security and compliance challenges unique to AI/LLMs.
• Bachelors degree in Information Security Computer Science MIS or related field.

What youll actually do:

Own the program

• Maintain and continuously improve Sendbirds information security programpolicies processes and controls that hold up under scrutiny.
• Drive continuous control monitoring to ensure we stay aligned with our chosen audit frameworks.
• Translate complex compliance requirements (HIPAA GDPR CCPA) into practical actionable programs.
• Evaluate and adopt AI-powered security tooling to stay ahead of a threat landscape thats evolving faster than traditional defenses.

Partner with the business

• Work directly with the CTO and engineering teams to embed security into the product development lifecycle not just review it at the end.
• Raise risk awareness across business stakeholders without crying wolf or creating friction.
• Be the person other teams want to work withbecause you solve problems not just flag them.
• Work with senior leaders to ensure our data privacy protocols are appropriate with our use of AI tools.

Lead the team

• Manage and develop a global lean security team making sure each hire reflects and advances the goals of the program.
• Be a player-coachthis isnt a delegator role. Youre in the work.

Respond and improve

• Establish and maintain incident response protocols that are fast clear and practicednot just documented.
• Continuously strengthen the security posture of a platform that never sleeps.
• Turn every incident into a lesson. Turn every lesson into a control.

Added Value:

• Security certifications: CISM CISA CISSP or equivalent.
• Experience at a global company operating across multiple time zones and regulatory environments.

Why Sendbird

Were a team of builders and thinkers that refuse to optimize for comfort. Were building the AI agent platform for customer experienceand we intend to own the category.

What we offer:

We take care of the people who build the future. Heres some of what you can expect when you join Sendbird:

• Medical dental and vision coverage on us. Sendbird covers 100% of the premium for our employees and roughly 80% for their dependents.
• Generous time off. 20 days PTO 13 company holidays 7 sick days 2 rest & rejuvenation days 1 volunteer day and your birthday off.
• $3500 annual Be Your Best Self boost. Spend it on anything that helps you grow. Gym memberships therapy books courses massages and more.
• Parental leave for all new parents. Time to be present for the moments that matter most.
• 401(k) from day one. Auto-enrollment flexible contributions and access to Vanguards investment platform.
• HSA & FSA options. Pre-tax accounts to cover healthcare dependent care and commuter expenses.
• Life & disability coverage fully paid. Life insurance and AD&D at 2x your salary plus short- and long-term disability at no cost to you.
• AI-First Environment. Enterprise access to top LLMs (Claude ChatGPT Gemini) and your choice of vibe coding tools.

Pay Transparency

For cash compensation we set standard ranges for all roles based on function level and geographic location. To determine our ranges we utilize a variety of compensation data benchmarked against similar-stage growth companies. A reasonable estimate of the current salary range for this role is $280000 $320000. This range is specific to the San Francisco Bay market. We consider several factors when making final compensation decisions including but not limited to skill sets experience and training licensure and certifications and other business and organizational needs which may cause your specific offer to vary from the amount listed above.

Flexible Work Policy

We offer a flexible work schedule at Sendbird. We also value collaboration and relationship building. With those values in mind we require all employees within an hours commute range of their local office to gather with their team in the office three days per week as a minimum. Some of our roles require a more frequent in-office schedule. Please work with your manager to understand the office time requirements for your position.

What diversity and inclusion mean to us

There is no such thing as a perfect candidate and the best employees come from a wide range of backgrounds experiences and skill sets. Sendbird is a place where everyone can learn and grow. We respect promote and encourage diversity for equal employment opportunities and encourage you to apply if this role excites you.

Sendbird is building the AI workforce of tomorrow and we hire that way too. Learn more about our interview process how we evaluate candidates and the role AI plays along the way.