Information Security (Remote-USA East Coast)

📋 Description

• • DeepJudge is at the forefront of transforming the legal industry through advanced AI and ICT solutions, empowering law firms and legal departments to unlock their vast institutional knowledge. Founded by former Google search engineers with advanced AI PhDs from ETH Zurich and supported by leading Silicon Valley investors, we are building the essential intelligence layer that revolutionizes how legal professionals access and leverage decades of experience, work product, and precedent. Our mission is to make this expertise instantly available, enabling firms to automate complex workflows, develop innovative knowledge-powered applications, and convert their accumulated experience into a sustainable competitive advantage.
• • As the Security Operations Manager, you will play a pivotal role in shaping and advancing our robust security governance and compliance programs. This is a highly cross-functional position, strategically positioned at the nexus of compliance, customer trust, and business expansion. You will be the primary owner of our Information Security Management System (ISMS), responsible for maintaining and continuously enhancing our adherence to critical industry standards such as ISO 27001 and SOC 2 Type 2. Your role will serve as a crucial bridge between our Legal, Engineering, and Go-To-Market (GTM) teams, ensuring our security posture not only meets but actively enables and accelerates business growth.
• • A significant and integral part of your responsibilities will involve direct engagement with our enterprise clients. You will expertly guide prospects through intricate Information Security and compliance discussions, building the foundational trust necessary to unlock and expedite sales cycles. This client-facing aspect is paramount to fostering long-term partnerships and reinforcing DeepJudge's reputation as a secure and reliable provider.
• • You will be instrumental in owning and continuously elevating our ISMS, ensuring comprehensive alignment with ISO 27001, SOC 2 Type 2, GDPR, and the evolving landscape of AI governance standards. This includes meticulously documenting, implementing, and maintaining all relevant policies, procedures, and controls to the highest standards.
• • You will manage the entire lifecycle of security audits, certifications, and internal control assessments, proactively ensuring that DeepJudge consistently exceeds regulatory and client requirements and remains ahead of evolving industry demands.
• • A key responsibility is guiding enterprise prospects and existing clients through detailed InfoSec and compliance conversations, acting as a trusted advisor within the sales process. You will also be responsible for managing and streamlining the completion of complex security questionnaires and due diligence reviews, ensuring timely and accurate responses that facilitate deal progression.
• • You will take ownership of our security whitepapers and other InfoSec collateral, ensuring they are consistently accurate, clearly articulated, and highly valuable resources for both internal teams and external stakeholders.
• • You will collaborate closely with our Legal and Compliance departments to define and refine security policies, ensuring strict alignment with contractual obligations and all applicable regulatory requirements.
• • You will manage the day-to-day operations of our compliance framework, encompassing critical areas such as vendor risk management, thorough third-party security reviews, comprehensive background screenings, and the implementation of organization-wide security awareness training programs.
• • You will work in close partnership with our Solution Architects and DevOps teams to translate high-level security and compliance requirements into practical, scalable, and effective implementation practices within our technical infrastructure.
• • You will liaise with Engineering and broader business teams to ensure that all security and compliance requirements are clearly understood, appropriately prioritized, and effectively implemented across all relevant projects and initiatives, fostering a culture of security by design.
• • This role offers a unique opportunity to significantly influence DeepJudge's security and trust functions as the company scales and secures major enterprise clients, becoming the central point of expertise for security and compliance across Engineering, Legal, DevOps, and GTM functions. You will bring clarity to complex security challenges at critical junctures, particularly when major deals are contingent on robust security assurances. By fostering a proactive, transparent, and growth-oriented security culture, you will directly contribute to DeepJudge's continued success and market leadership.