VP, Security & Compliance
Dynata | |
$200,000.00 - $220,000.00 / yr
| |
United States | |
Jul 14, 2026 | |
|
THE OPPORTUNITY Dynata is hiring aVP of Security & Complianceto own and evolve our enterprise security posture at a pivotal moment: we are scaling AI-driven infrastructure, migrating legacy platforms to cloud-native architectures, and hardening compliance controls across a global, highly regulated data environment. Reporting directly to theSVP of Infrastructure & Corporate Applications, you will lead a team of 6-15 security and compliance professionals, serve as the company's senior-most security executive, andoperateas a strategic partner to the CTO, Legal, and Board. This is a high-visibility, high-impact role for a leader who combines deep technical securityexpertisewith fluency in AI risk, regulatory compliance, and executive communication. Candidates with backgrounds inbanking, financial services, or Fortune 500 data-intensive environmentsare strongly preferred - where AI governance, model risk, and regulatory scrutiny are already embedded in the security culture. This role carries formal committee responsibilities: the VP will serve as a standing member ofDynata'sData Governance CommitteeandAI GovernanceCommittee, andwillparticipatein strategic task forces asdesignatedby senior leadership. The ideal candidateis located intheEastern or Central time zoneto ensure alignment with core business hours and cross-functional collaboration. KEY RESPONSIBILITIES Security Strategy & Governance OwnDynata'senterprise security strategy- define the roadmap, prioritize investment, and align security controls with businessobjectivesacross cloud, corporate applications, and data platforms. Establishand maintain a Zero Trust security architecturespanning AWS, Azure, and GCP environments. Overseethreat intelligence, vulnerability management (CVE reduction), and incident response programs. DriveCloud Security Hardening initiativesand set security standards within the Cloud Center of Excellence (CCoE). AI Security & Risk Management Buildand ownDynata'sAI Security governance framework-establishpolicies, controls, and risk guardrails for the company's growing AI/ML portfolio including MS Fabric, Snowflake, Copilot, and LLM-based tools. LeadAI risk assessment and model governancealigned with NIST AI RMF, EU AI Act, and emerging regulatory requirements. Definecontrols for LLM-specific threats: prompt injection, data exfiltration via AI, model inversion, and adversarial inputs. Partnerwith the EDMS and Engineering teamsto embed AI security-by-design inDataHub,lakehousearchitectures, and AI product development. Compliance & Regulatory Oversight Ownand manage all major compliance certifications and audits: SOC 2 Type II, ISO 27001, GDPR, CCPA/CPRA, and HIPAA where applicable. Monitorthe regulatory landscape- proactivelyidentifyand respond to emerging privacy and AI regulation in the US and EU. Managethird-party and vendor risk managementprograms acrossDynata'stechnology supply chain. Partnerwith Legal and Financeto respond to client security questionnaires, audits, and contractual security requirements. Security Operations Center (SOC) & Audit Management Ownand manageDynata'sSecurity Operations Center (SOC)- including 24/7 monitoring coverage, alert triage, escalation protocols, and continuous improvement of detection and response capabilities. Leadall internal and external security audits- coordinate audit preparation, evidence collection, control testing, and finding remediation across all compliance frameworks (SOC 2, ISO 27001, GDPR, CCPA). Managerelationships with external auditors, assessors, and penetration testing partners; ensure audit readiness is a continuous state, not a seasonal event. DriveSIEM/SOAR optimization- tune alerting, reduce false positives, and improve analyst efficiency across Splunk, Microsoft Sentinel, CrowdStrike, or equivalent platforms. EstablishSOC KPIs and SLAs: MTTD, MTTR, alert-to-ticket ratio, and analystutilization- reported to leadership monthly. Governance Committees & Strategic Leadership Serveas a standing member ofDynata'sData Governance Committee- providing the security and privacy lens on data classification, access policies, retention standards, and data lineage across the enterprise. Serveas a standing member ofDynata'sAI Governance Committee- defining AI risk thresholds, responsible AI standards, and security controls for all AI/ML models and agents moving into production. Participatein strategic task forces asdesignatedby senior leadership- contributing securityexpertisetoemerginginitiatives, M&A due diligence, vendor evaluations, and regulatory response efforts. Representsecurity interests in the Cloud Center of Excellence (CCoE)- ensuring that cloud architecture decisions are made with security guardrails built in from day one. Cross-Functional Partnership - Product, Engineering & Technology Partnerwith Product and Engineering teamsto embed security into the software development lifecycle (SDLC) - from threat modeling and secure design reviews through code scanning, staging validation, and production release gates. Collaboratewith Technology leadership(Cloud Ops, EDMS, Corporate Applications) to ensure security controls are woven into platform architecture, data pipelines, and enterprise application rollouts - not bolted on after the fact. Serveas the trusted security advisorfor all major technology programs - including D365 CE/F&O, MS Fabric/Lakehouse, Dynata+ Phase 3, and inBrain Azure migration - providing risk assessments and go/no-go input at key milestones. Engagewith front-end and application teamsto assess and remediate security risks in web applications, APIs, and customer-facing platforms - including penetration testing oversight and vulnerability triage coordination. Team Leadership & Culture Recruit, develop, andretaina high-performing Security & Compliance team of 6-15 FTEs. Fostera security-first cultureacross Technology Operations and the broader organization through training, awareness programs, and executive engagement. Presentto executive leadership and the board- deliver quarterly security posture reviews, risk dashboards, and compliance status updates with clarity, confidence, and business context. Serveas the executive sponsorfor security in cross-functional programs including BOS D365 migration, inBrain Azure migration, and Dynata+ Phase 3. QUALIFICATIONS& EXPERIENCE Education Bachelor's degree in computer science, Information Technology/Systems,Cybersecurityor related field GraduateDegree desirable,but notrequired Experience 15yearsof progressive experience in Information Security, Cybersecurity, or a related discipline. 5+ yearsin a people-management role leading security and/or compliance teams of 6 or more. Proventrack recordbuilding or maturing security programs at a Fortune 500, PE-backed, or highly regulated company (banking, financial services, healthcare, or large-scale data/tech platforms strongly preferred). Hands-on AI/ML security experience: securing LLM deployments, generative AI products, or data science environments - ideally including model risk management frameworks from financial services. Deepcloud securityexpertiseacross AWS, Azure, and/or GCP - including cloud-native security tooling, IAM, and multi-cloud governance. Strongcompliance program ownership: SOC 2, ISO 27001, GDPR, CCPA -you'verun the audits, not just supported them. Technical Expertise SIEM/ SOAR platforms: hands-on experience with CrowdStrike Falcon (EDR,OverWatch, Identity Protection), Splunk, Microsoft Sentinel, or equivalent - including rule tuning, playbook development, and SOC workflow automation. DLP(Data Loss Prevention): deep familiarity with enterprise DLP tooling (e.g., Microsoft Purview, Symantec DLP, Forcepoint) - policy design, incident investigation, and integration with broader data classification frameworks. Vulnerabilitymanagement: end-to-end CVE lifecycle - scanning, prioritization, patch coordination, and executive-level reporting. AI/ML security: NIST AI RMF, adversarial ML, LLM security controls, model inversion, and data poisoning defense. Dataarchitecture fluency: working understanding of modern data platforms (cloud data lakes,lakehouses, Snowflake, MS Fabric, relational and NoSQL databases) - sufficient to assess data flow risks, classify sensitive assets, and engage credibly with data engineering teams. Front-end platforms & enterprise applications: familiarity with security considerations for SaaS/enterprise app stacks - including CRM/ERP (e.g., D365, HubSpot, Workday), web applications, and API security - enabling effective partnership with Corporate Applications teams. Cloudsecurity tooling: AWS Security Hub, Microsoft Defender for Cloud, GCP Security Command Center, CSPM/CWPP platforms. ClaudeCowork (Anthropic): direct, hands-on experience using Claude Cowork for enterprise task automation, document intelligence, and AI-assisted workflows - enabling the candidate to credibly govern, audit, and set guardrails for AI productivity tools deployed across the organization. Certifications CISSP(Certified Information Systems Security Professional)- strongly preferred; candidates without CISSP must hold CISM, CISA, or equivalent and commit to CISSP within18 monthsof hire. CCSP(Certified Cloud Security Professional)- a strong plus givenDynata'smulti-cloud environment. AIsecurity or governance certification(e.g., NIST AI RMF Practitioner, Google Cloud Security) - valued given the AI governance committee responsibilities. CRISC, CGEIT, or similar risk management credentials- welcomed. Leadership & Soft Skills Executivepresence & communication: comfortable presenting to C-suite, board members, and external stakeholders - translating complex security risk into clear business language, defensible recommendations, and compelling narratives. You informdecisions,youdon'tjust report status. Cross-functional partnership: proven ability to partner effectively with Product, Engineering, and Technology teams - embedding security into the SDLC, product roadmaps, and platform architecture without becoming a bottleneck. Strategicthinkerwho can balance long-term security architecture with near-term operational realities and shifting business priorities. Collaborativeinfluencer- this role succeeds through influence, trust, and shared ownership across teams, not authority alone. Mission-driven: a genuine passion for protecting data, earning customer trust, and building a security culture that people believe in - not justcomply with. About Dynata Dynata is one of the world's leading providers of firstparty data contributed by optin members across its managed global panels. With a reach of more than 60 million individuals worldwide and an extensive library of profile attributes collected through surveys, Dynata is a cornerstone for precise, highquality data. The company builds innovative data services and solutions that deliver the voice of the consumer across the entire marketing spectrum-from market research to marketing and advertising. Dynata serves nearly 6,000 clients including market research firms, media and advertising At Dynata, we are committed to creating an inclusive and accessible environment where every employee and customer feels valued, respected, and supported. We strive to build a workforce that reflects the diversity of the communities we serve. Dynata welcomes and encourages applications from individuals with disabilities and is dedicated to fostering a work culture that supports everyone. Accommodations are available upon request for all aspects of the selection process. Dynata is an Equal Opportunity Employer. We consider all qualified applicants and employees without regard to race, color, religion, sex (including pregnancy, sexual orientation, and gender identity), national origin, marital status, age, disability, genetic information, veteran status, or any other legally protected status under applicable laws. The base salary range for this position in is $200K-$220K/yr; however, base pay offered may vary depending on location, job-related knowledge, skills, and experience. A discretionary incentive program may be provided as part of the compensation package, in addition to a full range of medical and other benefits, dependent on full-time employment status | |
$200,000.00 - $220,000.00 / yr
Jul 14, 2026