Director of IT & Information SecurityQevlar AI

About Qevlar AI

Qevlar is a B2B SaaS startup that strives to massively increase the productivity of cybersecurity teams. We develop AI Cybersecurity Analysts that augment Security Operations Centers (SOCs). Since our creation 2 years ago, we have:

• Raised €14 million in seed funding led by EQT Ventures and Forgepoint Capital

• Been incubated both by Microsoft (genAI studio) and Meta (AI program)

• Deployed our solution to Global 500 companies and leading MSSPs in EMEA and NA (Equans, Nomios, Globalconnect, Almond)

We're looking for our first Director of IT & Information Security to build and own our entire internal security and IT function from scratch.

What will you do

• Own our security posture end-to-end: maintain SOC 2 Type II compliance, manage audits, run pentests, and define our security policies and incident response processes

• Be the face of security with our clients: answer security questionnaires, join customer calls, and build the trust that closes enterprise deals

• Build our IT foundation: manage devices and MDM, streamline onboarding/offboarding, administer our SaaS stack (Google Workspace, Slack, etc.), and own IAM/SSO/MFA

• Structure the chaos: we're scaling fast and everything needs to be formalised, you'll create the processes, documentation, and governance we need

• Grow with us: start as an individual contributor, then build your team as we scale

Who you are 

You have:

• 7-10 years of experience in information security and/or IT, with at least one role in a B2B SaaS startup or scale-up

• Hands-on experience with SOC 2 or ISO 27001 (you've been through audits, not just read about them)

• Strong knowledge of IAM, SSO, and endpoint management (Okta, Google Workspace, Jamf, or similar)

• Familiarity with cloud environments (AWS, GCP, or Azure)

• The ability to talk security with enterprise clients and build credibility

• Full autonomy, you don't need hand-holding to figure out what needs to be done

Bonus points for:

• Experience with product security or secure SDLC

• A DevOps or infrastructure background

• Certifications like CISSP, CISM, or CISA

• Familiarity with LLM-based systems and their security implications

Why join us

• Build from scratch: you're not inheriting a mess — you're creating the function, the processes, and eventually the team

• Security for security people: we build AI that helps SOC analysts. If you care about cybersecurity, our mission will resonate

• Ownership: BSPCE package included

• Flexibility: Paris-based, remote-friendly

Hiring process

1. Intro Call

2. Case Study

3. Meet the Team