Director of Security
at Pinecone, Tel Aviv
This position is open to candidates based in Israel or New York City. If you have previously applied for our NYC Director of Security Engineering role, there is no need to reapply.
Pinecone is on a mission to build the search and database technology to power AI applications for the next decade and beyond. Our fully managed vector database makes it easy to add vector search to AI applications. Since creating the “vector database” category, demand has grown incredibly fast and it shows in our user base. We are a distributed team with clusters in New York, San Francisco, Tel-Aviv, and Manchester.
About the Role
As our first Director of Security, you will play a foundational role in helping us build Pinecone. You will be responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. Essentially, you will own all aspects of operating an advanced information security ecosystem and be responsible for protecting our products, systems, and customers. You will report directly to the VP of Finance & Ops.
In this role, you will:
Develop and execute a comprehensive information security strategy and roadmap to ensure the confidentiality, integrity, and availability of our data, systems, and networks and reduce the risk of data breaches.
Establish and maintain information security policies and procedures to ensure compliance with applicable laws, regulations and frameworks (e.g., GDPR, HIPAA, SOC 2).
Conduct regular risk and vulnerability assessments to identify and mitigate security risks.
Implement and manage security controls, technologies, and solutions to protect sensitive data and secure network infrastructure.
Monitor, analyze and respond to security incidents and breaches (IR).
Develop and deliver security awareness and training programs.
Stay up to date with the latest industry trends, solutions and emerging threats.
Collaborate with cross-functional teams (R&D, Legal, Product, Ops and Sales) to achieve a secure and compliant environment.
Manage the company's IT.
We’re looking for someone with:
8+ years of experience in the space, including with:
IT System administration (Windows, Mac and Linux).
5+ years in a role similar to Director of Security or CISO.
Experience in GCP, AWS or Azure Cloud Infrastructure as well as Kubernetes, Docker, and production environments.
Bachelor's degree in technical fields (Master's degree is a plus).
Relevant professional certifications such as CISS, CISM or similar.
Extensive knowledge of security technologies and solutions, such as firewalls, intrusion detection/prevention systems, identity and access management, data encryption, etc.
Experience in vulnerability management and mitigation.
Inside-out understanding of cybersecurity concepts, technologies, best practices, and frameworks (e.g., ISO 27001, NIST SOC 2).
Familiarity with regulatory requirements (e.g., GDPR, HIPAA, PCI DSS) and experience in ensuring compliance.
Excellent leadership skills and extreme attention to detail.
You’ll be a good fit if you:
Enjoy a fast-growth environment and taking on responsibility.
Are a self-starter that shines when tasked with navigating ambiguous situations.
Have a proven track record of driving cross-functional partnership.
Are excited by the prospect of eventually growing and leading a team of your own.
Care as much as we do about building a vibrant and healthy company.