Head of Security

Merge is the leading provider of agentic tools and customer-facing integrations for frontier LLMs, Fortune 500 organizations, and B2B SaaS companies. Our platform offers three core products: Merge Unified, which enables businesses to add hundreds of integrations to their products with a single API, Merge Agent Handler, which empowers AI agents with secure access to thousands of third-party tool, and Merge Gateway, the control plane for running AI in production. Merge's enterprise-grade platform handles the entire integration lifecycle, from authentication and security to monitoring and maintenance. Thousands of companies trust Merge to accelerate product development, unblock sales, reduce customer churn, and save engineering resources—allowing them to focus on their core product.

Merge is poised to power all B2B integrations, and in doing so, are powering data movement for some of the most secure companies in the world. Working with these powerhouses requires us to follow industry leading security practices and constantly protect ourselves.

As the Director of Security at Merge, you will manage our security programs, including infrastructure, compliance, and security automation. While you don’t need specific experience with all of the above, we’d expect you to be excited to learn and grow, and tackle any challenges that may come your way.

What you will do:

• Create and drive the security roadmap

• Manage our compliance automation programs (SOC 2, ISO 27001, HIPAA, etc.). We’ve already achieved these using Drata, and while you have a team to support you, you will take the lead.

• Ensure all engineers and employees of Merge treat security as a core part of our practices

• Manage our Bug Bounty Program

• Implement security controls across Merge, from infrastructure to CI

• Implement and run manual and automated security practices to mitigate vulnerabilities

• Assist with security reviews, threat modeling, disaster recovery practice, and code reviews

The ideal candidate will have:

• 7+ years of security engineering experience

• Ownership or leadership within areas of security at previous organizations, infosec being a plus

• An overall excitement around building a more secure engineering function and organization

• Ability to manage security programs

• Experience with and a desire to code in at least one major programming language

• A thorough understanding of networking and infrastructure, including load balancing, VPNs, Zero Trust, HTTPS, DNS, etc.

• Experience with multi-tenant cloud environments

Compensation:

• The cash compensation range for this role is $240,000 - $280,000 

• Actual compensation packages are based on a wide array of factors unique to each candidate, including but not limited to skill set, years & depth of experience, and certifications. In addition to cash compensation, all full time employees receive an equity compensation package

Benefits: 

• Unlimited PTO + 10 company holidays

• Pre-Tax commuter benefits

• 100% covered health, vision, and dental insurance 

• 401K Plan

• $200 one-time home office stipend

• In office snacks and free dinner when working past 7pm