Director of IT & Security

Omatic


Job Location:

Mount Pleasant, TX - USA

Monthly Salary: Not Disclosed
Posted on: Yesterday
Vacancies: 1 Vacancy

Job Summary

ABOUT OMATIC SOFTWARE

Omatic Software helps nonprofits connect their data and unlock the full potential of their technology investments. We build integration and data management solutions that allow mission-driven organizations to spend less time wrestling with systems and more time doing work that matters. Our IT & Security Team is critical in ensuringOmaticssuccess byestablishingan unshakeable security and privacy posture and driving the continuous compliance attestations thatvalidateour customers trust.

THE OPPORTUNITY

Thisis a high-impact leadership role for someone who wants to shape the technology security and compliance foundation of a mission-driventechnologycompany serving the nonprofit sector. As Director of IT & Security you will lead the systems practices and safeguards that enableOmaticsteams to work securely efficiently and confidently while helping our customers trust that their data is closely with leaders across Product Development Infrastructure Sales LegalandCustomer Experience to ensureOmaticstechnology environment supports growth innovation and customer confidence.

In this roleyoullhave the opportunity to balance strategic leadership with hands-on IT operations security governance compliance readiness vendor risk business continuity and the responsible use of AI across the organization. From strengthening our security posture and leading audit readiness to supporting customer conversations and improving the employee technology experienceyoullplay a visible and trusted role in helping Omatic scale thoughtfully while staying true to its mission and values.

WHAT YOULL DO

Information Technology (IT)

  • Develop andmaintainIT systems architecture and define the standards and protocols for data exchange communications software and interconnections.
  • Establish coordinate and administer aplan forIT operations including IT training and technical support together with necessary controls and procedures.
  • Provide advice on evaluationselection implementation and maintenance of information systems ensuringappropriate investmentin strategic and operational systems.
  • Negotiate all IT system and SaaS acquisition contractssolicitinginvolvement and participation of other management team members asappropriate.
  • In conjunction with the COO coordinate IT reviews and endorses strategic IT plans budget proposals and proposed changes.
  • Ensure that all personnel are appropriately trained in the usage of all IT products and services to effectively carry out theirresponsibilities.
  • Oversee the secure procurement account provisioning and life-cycle management of corporate AI software including platform configurations plugins skills and developer connectors (e.g. Claude Gemini).
  • Direct hardware lifecycle management including strategic enterprise laptop refresh cycles tooptimizeTotal Cost of Ownership (TCO) and departmental budgeting.
  • Oversee Identity and Access Management (IAM) infrastructure driving internal Single Sign-On (SSO) adoption and advising customer-facing SSO deployments (e.g. Auth0).
  • Manage IT department team members across all areas of training and support operations and project management.

Security

  • Assure protection for the information assets of the business through internal control internal auditing IT security recovery procedures andassuresproper insurance coverage.
  • Develop andmaintaina business IT recovery plan to ensuretimelyand effective restoration of IT servicesin the event ofa disaster.
  • Serve as lead to the Security and Compliance Team (a cross-departmental team).
  • Establish and enforce advanced AI Security and Governance guardrails to mitigate risks such as intellectual property exposure source code leakage and supply-chain vulnerabilities within the development lifecycle (e.g. working with Infrastructure and Product teams to secure AI integrations).
  • Administer and enforce vulnerability remediation SLAs across the secure SDLC ensuring pen test SAST and DAST findings are remediated. Working with Infrastructure and Product Development to ensure SAST scan procedures are followed for all PRs.
  • Direct the corporate Security and Privacy awareness programs including mandatory annual training HIPAA training and continuous phishing simulations (e.g. KnowBe4).
  • Architect lead and document annual Business Continuity and Disaster Recovery (BCDR) Incident Response and Physical Office tabletop exercises.
  • Evaluate and deploy advanced threat protection mechanisms.
  • Collaborate with Legal and Sales to negotiate complex customer contractual nuances including Data Protection Agreements (DPAs) Business Associate Agreements (BAAs) and strict geographical access restrictions.
Compliance
  • Coordinate the activities related toOmaticsannual audits (SOC 2 Type II HIPAA TX-RAMP and other audits that may apply).
  • Ensure that enterprise information systemsoperateaccording to internal standards external accrediting agency standards and legal requirements.
  • Perform annual vendor management reviews and documenting evidence for other audit controls inOmaticsGRC platform (Drata).
  • Manage and updateOmaticsTrust Center as neededto providecustomerswitha transparent view ofOmaticsSecurity/Privacy posture.
  • Map track and document AI usage policies and sub-processors within the GRC platform (Drata) tomaintaincontinuous 3rd-party attestation readiness.
  • Maintain and update customer-facing security/privacy/compliance information and FAQ documentation within theSafeBaseTrust Center to accelerate enterprise customer risk assessments.
  • Monitor emerging multi-regional data privacy laws and contractual nuancesregardingdata processing machine learning and AI workloads; followsOmaticsThird-Party Risk Management (TPRM) Policy to review new systems and AI prior to implementation.
  • Coordinate cross-departmental notifications forproductionsub-processor changes tomaintainstrict adherence to privacy law right to be notified obligations.
  • Oversee and update the annual HECVAT full as needed when updates arerequiredbased on Omatic Cloud features/updates.

Facilities Management

  • Oversee landlord relations lease administration and office space planning with direct accountability for resolution of escalated building-related issues.

  • Directfacilitiesvendor relationships (cleaning maintenance security systems office suppliesbreak room/kitchen provisions) including contract negotiation and budget oversight.

  • Administeroffice safety and emergency preparedness programs including fire/life-safety compliance and physical security/access control systems.

WHAT YOU BRING

Required

  • A bachelors degree in information technology or computer science
  • 10 years of related work experience
  • 4 or more years in an information security management or team lead role
  • CISSP or CISM certification
  • Experience with Microsoft Mac and Linux isrequired
  • Strong analytical and organizational skills
  • Excellent written and verbal communication skills
  • Team-oriented approach to work
  • The successful candidate should be comfortable and able to jump in when needed to help the IT team with tickets lead Security and Compliance meetings and review/update policy and GRC as needed.

Preferred

  • Proficient AI Security and Governance knowledge and specifically understanding of Claude skills plugins connectors and Claude Code usage.
  • CCSP or CIPM certification
  • Experience working with sales teams toassistthem in closing deals through meeting with customers to discussOmaticsSecurity/Privacy posture.
  • Experience working with Developers/Infrastructure teams and secure SDLC (SAST DAST SCA annual pen test findings remediated).

WHAT SUCCESS LOOKS LIKE

In your first90 daysyoullhave built strong relationships with your team and key stakeholders across Omatic (Sales Product Development Infrastructure Customer Experience)and gained deep familiarity withOmaticsproduct suite SDLC andOmaticsSecurity/Privacy posture.

Within six months you will understand and ownOmaticssecurity privacy and compliance will be actively navigating complex customer contractual negotiations as needed inassistingthe sales team to ensure adherence to multi-regional data privacy laws andleveragingcontinuous compliance platforms (Drata) and theSafeBaseTrust Center to provide transparent 3rd-party attestations of organizational will be working cross-functionallywithEngineering on security/privacy/compliance for Omatic Cloud.

ROLE DETAILS

Department: IT & Security
Reports to: COO
Employment Type: Full-Time
Team Size: 2
Location: Charleston SC
Travel: Minimal

WHY OMATIC

  • Mission-driven company making a real impact in the nonprofit sector
  • Collaborative low-ego culture that values results and continuous improvement
  • High visibility role with direct C-suite exposure and room to grow
  • Competitive compensation benefits and flexible work environment
  • A team that genuinely cares about customers each other and the work

Required Experience:

Director

ABOUT OMATIC SOFTWAREOmatic Software helps nonprofits connect their data and unlock the full potential of their technology investments. We build integration and data management solutions that allow mission-driven organizations to spend less time wrestling with systems and more time doing work that m...

About Company

Company Logo

Data integration company, Omatic Software is a top vendor for nonprofit organizations all over the world! Click here or call 888-662-8426 to learn how our nonprofit database software can help your organization import, export, manage and analyze data!

View Profile View Profile