Director, Information Security (Remote in US or Canada)


San Francisco, CA


Awesome tech is made by awesome people. And we’re always looking for new team members who bring the energy, passion, commitment, and collaboration that has made Auth0 the great company it is today.

So what do we exactly build? Auth0 is an authentication and authorization platform designed by developers for developers. Basically, we make companies’ login boxes safe, secure, and seamless for anyone logging in. Our mission is to secure the world’s identities so innovators can innovate. But it’s a big mission that requires a lot of teamwork.

Words, code, or people, whatever your skill, there’s a place for you here

Director of Information Security

The Role and the Team

The Corporate Information Security Team is looking for a business first strategic thinking Director of Information Security. The team is on a mission to earn customer trust and reduce risk by relentlessly protecting data and operational integrity across the worldwide business and this role is critical to leading and transforming our security program to keep up with the threat landscape and partnering across the company in this critical area. The ideal candidate will have broad practical implementation knowledge of designing and running information security programs, building and scaling large security capabilities and working across organizational boundaries and with executive leadership to shape the security strategy to ensure we uphold our promises to customers in every interaction. We value strong communication and collaboration, the ability to network and integrate across the company and to inject value to the company and create meaningful lasting relationships with our business partners, stakeholders and executive leaders.

You're a great fit for this role if you …

  • Have the ability to clearly articulate and build support for a strategic security vision and are as passionate about the “why” as the “how”
  • Are relentlessly curious, take ownership and challenge the status quo
  • Have in-depth knowledge of the security landscape as well as deep understanding of how to implement solutions in a regulated setting
  • Operate globally and are able to define where strategies and tactics need to be applied globally and locally and to communicate that clearly and simply
  • In-depth knowledge of cloud providers, cloud operating models and cloud security controls and best practices
  • Shape and leverage advanced conceptual thinking to solve complex and/or completely new or novel security situations that have never been dealt with before
  • Actively pursue innovative solutions that align with the company’s tolerance for risk (business and reputational

The experience you bring

Required skills:

  • Combination of 10+ years of experience in technology with 5+ of those years in Information Security
  • 7 years of people management experience
  • Strong diplomatic skills in navigating high profile politically charged situations
  • Experience in application development or application security
  • Background in risk management with direct participation in risk management processes, including application risk classification and control assessments
  • Expertise in application security, vulnerability remediation, secure system operations and are grounded in software development lifecycle management
  • Strong experience working with lines of business and gaining consensus on security rationale, implementation, deployment and maintenance
  • Significant experience in public cloud operators, ideally AWS but Google Cloud or Azure is acceptable
  • Skilled presenting to a variety of audiences and comfortable communicating to senior executives

Desired Experience

  • B.S. Degree in Information Systems or related focus
  • 8+ years in people management experience
  • CISSP or CISM Certification

Auth0 makes the internet safer by safeguarding billions of login transactions each month.

Our team is spread across more than 35 countries and we are proud to continually be recognized as a great place to work. Culture is critical to us, and we are transparent about our vision and principles. We practice N+1>N which applies to everything from our people to how we iterate our tech; we believe in one team, one score; and we give a shit about everything we do.

Research shows that candidates from underrepresented backgrounds often don’t apply unless they meet all the job criteria. We aren’t looking for someone who ticks every single box on a page; we’re looking for lifelong learners and people who can make us better with their unique experiences. If you think you’d be a great fit, then please get in touch to tell us about yourself.

Auth0, recently acquired by Okta, is an Equal Employment Opportunity employer. Auth0 conducts all employment-related activities without regard to race, religion, color, national origin, age, sex, marital status, sexual orientation, disability, citizenship status, genetics, or status as a Vietnam-era special disabled and other covered veteran status, or any other characteristic protected by law. Auth0 participates in E-Verify and will confirm work authorization for candidates residing in the United States.

Share this position

Apply now