Senior Director, Information Security Compliance

Piper Companies is seeking a Senior Director, Information Security Compliance to join a growing organization within the technology industry in a hybrid position working 2 days onsite in Newton, MA. The Senior Director, Information Security Compliance will serve as a senior individual contributor responsible for leading compliance strategy and acting as the primary client-facing representative for information security programs.

Responsibilities of the Senior Director, Information Security Compliance:

• Lead and manage the organization’s information security compliance program, including SOC 2, HIPAA, and HITRUST initiatives
• Act as the primary point of contact for external clients on all security-related matters, including audits, assessments, and detailed security questionnaires
• Develop, implement, and maintain internal policies and procedures aligned with regulatory requirements and client expectations
• Coordinate and oversee business continuity planning and conduct incident response tabletop exercises
• Partner closely with engineering and DevOps teams to ensure appropriate security controls, monitoring, and tooling are in place
• Oversee data protection strategies, particularly for sensitive and regulated data environments
• Identify and mitigate risks related to data breaches, third-party vendors, and overall security posture
• Support the development of AI security and governance frameworks
• Collaborate cross-functionally with legal, compliance, and technical teams to maintain strong alignment across the organization
  
  

Qualifications of the Senior Director, Information Security Compliance:

• 10 years of experience in information security with a strong focus on compliance programs (SOC 2, HIPAA, HITRUST)
• Demonstrated experience managing audits, assessments, and complex client-facing security engagements
• Proven ability to serve as the “face” of information security in client interactions and enterprise environments
• Experience responding to and managing extensive security questionnaires in highly regulated industries such as healthcare or financial services
• Strong understanding of data protection, infrastructure security, and application security best practices
• Background working in technology-driven environments with collaboration across engineering and DevOps teams
• Knowledge of incident response planning, business continuity, and risk management frameworks
• Excellent communication skills with the ability to translate technical concepts to non-technical stakeholders
  
  

Compensation for the Senior Director, Information Security Compliance includes:

• Salary range: $170,000 – $220,000 depending on experience
• Comprehensive benefits package including medical, dental, vision, 401(k), and PTO
  
  

This job opens for applications on 06/11/2026. Applications for this job will be accepted for at least 30 days from the posting date.

Keywords: Information Security, InfoSec Compliance, SOC 2, HIPAA, HITRUST, GRC, Security Audits, Risk Management, Data Protection, Security Questionnaires, Client-Facing Security, Governance Risk and Compliance, Incident Response, Business Continuity, DevOps Security, Application Security, Infrastructure Security, AI Security, Regulatory Compliance, Healthcare Security, Third-Party Risk, Cybersecurity Leadership, Security Assessments, Policy Development, NIST, ISO 27001, Cloud Security, Data Privacy, Compliance Leadership