Job Description

Insurance is a trillion dollar market that is fundamental to society, yet it has not modernized — until now.

Newfront is building the modern insurance experience.

We’ve reimagined the experience for clients, prospects, and employees, altering the way people create, understand, select, transact, and use insurance. We’re changing the approach so that it starts and ends with the client, not the product, and empowering people for moments that matter.

Our unique approach recognizes both the vast potential of technology and the fundamental role of insurance experts. We’re a technology-driven company with DE&I in our DNA and strong values; we believe people matter most.

Our mission is to define the future of the insurance industry, while instilling a high performance culture in combination with living our Work, Love, Play ethos each day. We value balanced lives and are passionate about creating a culture of wellness that results in healthier, happier, and more productive employees, and more successful clients.

We are seeking an experienced and operationally-focused Director of Security and Compliance. This person will oversee the security of our applications, products, and data, while ensuring adherence to critical compliance frameworks such as SOC2 and HIPAA. Importantly, this person will be the main point of contact for security-related questions from Newfront clients and prospects.

The Director of Security and Compliance will report directly to Chief Operating Officer and identify cross functional partners and outside resources needed to drive security and compliance across Newfront.

What You’ll Be Responsible For:

• Lead application and product security efforts, including vulnerability monitoring, penetration testing, and red team exercises.
• Maintain and oversee compliance with industry standards such as SOC2, HIPAA, and ISO 27001.
• Ensure compliance alignment with evolving business needs, client requirements, and regulatory changes, including adopting additional certifications.
• Develop and manage processes for rapid response to security inquiries from prospects and clients during RFPs and the sales process, ensuring a tight SLA on requests.
• Collaborate with Engineering and DevOps teams to enhance cloud security for AWS and other environments.
• Oversee incident response efforts in coordination with external security partners, such as Arctic Wolf, to mitigate and resolve security threats.
• Establish and maintain a comprehensive security package for use in sales and client communications.
• Ensure effective endpoint security and asset management across corporate devices, including laptops and mobile devices. We’re currently using Kandji and Microsoft Intune.
• Manage governance, risk, and compliance (GRC) initiatives, ensuring internal and external adherence to best practices and frameworks.
• Collaborate cross-functionally to implement secure onboarding/offboarding processes, integrating with identity management systems like Okta.
• Stay current with emerging security threats and ensure continuous improvement in security operations and practices across the organization.

Qualifications:

• 8+ years of experience in application security, product security, and compliance management, with a strong operational focus.
• Bachelor’s degree in information technology, information systems, computer science, or related field.
• Proven experience with industry standards and compliance frameworks such as SOC2, HIPAA, ISO 27001, and NIST.
• Extensive track record overseeing a secure environment for storing confidential customer and PII data.
• Hands-on experience with security information management tools (e.g. Vanta, Arctic Wolf), penetration testing, and incident response processes.
• Strong understanding of cloud security, particularly in AWS.
• Familiarity with Okta for identity and access management.
• Excellent communication and collaboration skills, with the ability to respond quickly to security inquiries in high-pressure environments.
• Experience with data security and access control in an environment that leverages BPO (Business Process Outsourcing).

The pay range for this position in California, Washington, Colorado and New York at commencement of employment is expected to be between $150,000 and $187,500/yr; however, base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. The total compensation package for this position may also include other elements, including a bonus, restricted stock units, and discretionary awards in addition to a full range of medical, financial, and/or other benefits (including 401(k) eligibility and various paid time off benefits, such as vacation, sick time, and parental leave), dependent on the position offered. Details of participation in these benefit plans will be provided if an employee receives an offer of employment. If hired, the employee will be in an “at-will position” and the Company reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors.

At Newfront, we are committed to hiring diverse talent and supporting an inclusive workplace environment. If you are excited about a role at Newfront but feel you’re missing a few of the qualifications, we still encourage you to apply and tell us about yourself. You may just be the next Newfront team member that we are looking for! 

Newfront is proud to be an equal opportunity workplace. Diversity is in our DNA and we believe that creating an inclusive workplace elevates the value we are able to bring to our customers and employees alike. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, genetic information, disability, veteran status, or any other applicable status protected by state or local law.

If you require reasonable accommodations throughout the application or interview process, please contact us at

ca*****@ne******.com











. For information regarding how Newfront collects and uses personal information, please review our Privacy Policy.

How to Apply

Job Categories: Equal Opportunities. Job Types: Full-Time. Salaries: Less than 20,000.

24 total views, 0 today

Apply for this Job