Remote job
Sr. Director, Security
Zapier
via Ashby
At a glance
- Tech stack
- AIcloudidentity
- Seniority:
- Senior
Sr. Director of Security at Zapier to own security strategy for an AI-native SaaS platform. Leads Application Security, Infrastructure Security, Detection & Response, and GRC teams and partners with executives, Product, Engineering, Legal, GTM, and Enterprise Governance. Suited for pragmatic, engineering-oriented SaaS security leaders.
- Owns security for an AI-forward, enterprise-facing SaaS product
- Leads AppSec, Infra Security, Detection & Response, and GRC
- Partners closely with executives, Product, Engineering, and Governance
- Role aims to make security a competitive advantage
Automatically generated
Job description
AI AT ZAPIER
At Zapier https://zapier.com/about, we build and use automation every day to make work more efficient, creative, and human. So if you’re using AI tools while applying here - that’s great! We just ask that you use them responsibly and transparently.
Check out our guidance on How to Collaborate with AI During Zapier’s Hiring Process https://zapier.com/l/jobs/ai-at-zapier, including how to use AI tools like ChatGPT, Claude, Gemini, or others during our hiring process - and when not to.
We're looking for a Sr. Director of Security to lead the Security organization at Zapier — our most senior security executive, with high growth potential toward Chief Security Officer for the right leader. We're on a mission to make everyone more productive at work, and our product has helped millions of people — and increasingly, the world's largest enterprises — build businesses through the power of automation and AI.
Zapier is an AI-forward company building AI-enabled products on top of frontier models, and a new generation of more capable, more autonomous models is reshaping both the products we ship and the threats we defend against. We are a critical vendor — and in many cases a subprocessor — for thousands of enterprise customers who route sensitive data, credentials, and business-critical workflows through us every day.
As Sr. Director of Security at Zapier, you will set and deliver the security strategy for an AI-native SaaS platform that sits in the middle of our customers' most important workflows. You will lead a team of Application Security (Product Security), Infrastructure Security, Detection & Response, and GRC engineers. You will partner closely with executives, Enterprise Governance, GTM, Product, Engineering, Legal, and Risk to make security a competitive advantage — not a tax — on how Zapier builds, ships, sells, and operates.
About You
- You are a pragmatic, engineering-oriented SaaS security leader who thinks like an engineer. You bring a hypothesis-driven, systems-thinking approach to security, and you are comfortable operating in ambiguity. You have led security teams for SaaS product companies on modern tech stacks that ship quickly and safely. You've gone deep in at least one security discipline (Application/Product Security, Infrastructure Security, Detection & Response, etc.) and broad across the others. You're fluent in modern cloud and identity threat models, supply chain risk, and secure-by-default infrastructure. You make decisions using business context and data as inputs, not dogma.
- You are an AI-era security leader who helps Zapier stay ahead of what AI makes possible — for our product and for our adversaries. You stay on the bleeding edge of what AI enables for defense and for attack. You turn that into guidance for executives and direction for Product and Engineering: what to build, what to avoid, and how trust and security show up in the product. You spot opportunities as well as risks — where stronger posture, transparency, or product choices can win enterprise trust. You have an opinion on how to secure agentic systems, MCP-style integrations, and AI features that touch customer data, and you help shape the roadmap — not only review what ships.
- You look around corners — on risks and opportunities. You maintain a clear, prioritized view of what could hurt us and what we should pursue next, with impact and likelihood explained in plain language. You surface blind spots early and drive intentional decisions — mitigate, invest, or accept risk with eyes open. You don't default to reactive plans or comprehensive lists without a headline narrative of what keeps you up at night and what we're doing about it.
- You drive change across the company, not only inside Security. You are strong in change management: influencing executives, partnering with Build and IT, and shifting how the company works — policies, golden paths, technical enforcement, procurement, how teams ship and use AI — without defaulting to "security said no." You make the right thing easier than the risky thing, and you tee up leadership decisions when change requires company-wide support.
- You are a strong partner to Enterprise Governance on shaping the product. You work with Governance, Product, and GTM so enterprise-grade security and trust are designed in — controls, data and agent boundaries, AI-specific diligence, and what we can credibly commit to in contracts — not bolted on after ship.
- You have executive presence internally and externally. Inside Zapier, you are a calm, credible leader for your team and a trusted peer to the executive team — clear narratives, crisp tradeoffs, judgment under ambiguity. Outside Zapier, you are comfortable and effective with customers, prospects, CISOs, auditors, regulators, and analysts. You partner with Sales, CS, Legal, and Product Marketing to unblock and accelerate enterprise deals. You understand what it means to be a critical vendor and a subp
This role is provided by an external source. Applications are handled on the source website.
