Job Description:

Role Overview

As Director of Information Security at Voyant, you will be the senior, hands-on owner of Voyant’s information security and governance programs. This role is responsible for directing security outcomes, not managing a large team. You will work closely with the CTO, Director of Compliance, IT, and Ops to ensure Voyant’s internal operations and SaaS platforms meet high standards for security, audit readiness, and customer trust.

This position reports directly to the CTO and serves as Voyant’s primary point of contact for security-related matters—internally, with auditors, and with current and prospective customers.

This is a high-impact, execution-oriented role that blends security engineering, governance, audit operations, and cross-functional collaboration.

We can consider candidates for this position who are able to accommodate a fully in-office work schedule and are close to our Austin,TX office.

Key Responsibilities:

Governance, Risk, and Compliance (GRC)

• Own the day-to-day execution of SOC 2 audits, including:

  • Gathering evidence and screenshots

  • Responding to auditor requests

  • Maintaining continuity and precedence across audit cycles

  • Partnering with the Director of Compliance on audit responses and remediation tracking

• Maintain, update, and expand Voyant’s information security policies and procedures, including annual reviews and the creation of new policies (e.g., AI usage, acceptable use, access control).

• Contribute to periodic risk assessments, identifying gaps and coordinating remediation efforts.

• Ensure policies, controls, and evidence remain continuously audit-ready rather than point-in-time.

Customer & Sales Security Support

• Partner with Compliance and Sales to respond to customer and prospect security questionnaires, RFPs, and due-diligence requests.

• Provide accurate, policy-backed answers regarding Voyant’s security posture, controls, and compliance commitments.

• Help maintain scalable processes and tooling for answering security questions efficiently and consistently.

Data Protection & Microsoft 365 Security

• Help design, implement, and mature data protection controls within Microsoft 365, including:

  • Microsoft Purview configuration for Data Loss Prevention (DLP), sensitivity labels, and information governance

  • Collaboration with IT and Compliance to align technical controls with policy requirements

• Assist in defining data handling standards for sensitive customer and corporate data.

Identity, Endpoint & SaaS Security

• Help administer and maintain Voyant’s JumpCloud environment, including:

  • User and device management

  • SSO application integrations

  • Access control and lifecycle processes

• Collaborate with IT on endpoint, identity, and SaaS security best practices.

• Assist IT with select operational tasks where security expertise is required (e.g., networking, firewall configuration).

Infrastructure & Application Security

• Evaluate Voyant’s overall security posture across corporate IT and SaaS environments.

• Work closely with Ops and Engineering to:

  • Review application and infrastructure security controls

  • Participate in threat modeling exercises

  • Review results of penetration tests and vulnerability scans

• Coordinate penetration testing efforts and help prioritize remediation.

• Monitor the external threat landscape and advise stakeholders on emerging risks.

Incident Response & Security Operations

• Maintain and periodically test incident response plans and procedures.

• Coordinate response activities in the event of a security incident, ensuring clear communication and recovery of critical services.

• Work with Voyant’s MSP and security vendors for intrusion detection and vulnerability management, including reviewing alerts and reports.

Security Awareness & Enablement

• Develop and maintain security awareness training for employees.

• Promote a pragmatic, risk-based security culture that enables the business to move quickly and safely.

Required Qualifications

• Proven experience in information security, cybersecurity, and IT audit execution.

• Strong, hands-on experience with SOC 2 Type II audits.

• Practical knowledge of security frameworks and standards (e.g., NIST, ISO 27001, CIS).

• Experience maintaining and authoring security policies and procedures.

• Experience with Microsoft 365 security tooling, including Purview or comparable DLP / information governance platforms.

• Familiarity with identity and access management platforms (e.g., JumpCloud or similar).

• Experience working closely with IT, Ops, and Engineering teams.

• Comfort operating as a senior individual contributor who owns outcomes end-to-end.

• Excellent written and verbal communication skills, especially with auditors and customers.

Preferred / Bonus Experience

• Experience automating or streamlining GRC and audit workflows.

• Familiarity with AWS security services, including WAF, Security Hub, GuardDuty, Shield, ALB, EC2, S3, RDS, and VPC.

• Exposure to LLM-assisted workflows for governance, documentation, or security operations.

• IT systems or network administration background.

• Relevant certifications (CISSP, CISM, CISA, or equivalent).

Compensation: The Base Salary range for this position is between $135,000-$150,000.

This information reflects a base salary range that AssetMark reasonably expects to pay for the position based on a number of factors which may include job-related knowledge, skills, education, experience, and actual work location. This position will also be eligible for additional variable incentive compensation and competitive benefits.

Candidates must be legally authorized to work in the US to be considered. We are unable to provide visa sponsorship for this position.

Who We Are & What We Offer:

We are AssetMark, a company on the move, shaping the future of financial services. Growth is in our DNA. Every day, we combine technology, insight, and collaboration to create new possibilities for advisors, for our people and for our investors. At AssetMark your ideas matter; they’re heard, valued, and drive meaningful change. Join a team that sets new standards and creates space for you to thrive and do your best work. 

Our Mission 

Our mission is simple: to help our 10,500+ financial advisors make a meaningful difference in their clients’ lives. We do this by combining powerful technology, holistic support, and expert consulting to help advisors run stronger, more efficient businesses. Backed by a comprehensive suite of investment solutions and a trust company that boasts of $150B+ AUM, our platform empowers advisors to deliver exceptional service and an outstanding client experience.

Our Values 

Heart. Client Success. Integrity. Respect. Excellence. Our values are how we show up every day.  

We believe in: 

• Leading with Heart, in truly making a difference in the lives of others: teammates, clients, investors and communities. 

• Obsessing over Client Success, bringing a relentless focus on what matters to clients that sets us apart and creates loyal, lasting relationships. 

• Unyielding Integrity, doing what’s right, always. Even when it’s hard. 

• Collective Respect, in being authentic, inclusive and valuing all voices while winning together. 

• Operating with Excellence, in learning fast, continuously improving, innovating and collaborating to find new and better solutions.  

These values shape our culture, guide our decisions, and define what it means to be part of the AssetMark family. 

Our Culture & Benefits 

Our culture brings our mission and values to life. Here, we do what’s right, embrace diverse ideas, and innovate together. We also offer a wide range of benefits to support you and your family—because thriving at work starts with thriving in life. 

• Flex Time or Paid Time Off and Sick Time Off 

• 401K – 6% Employer Match 

• Medical, Dental, Vision – HDHP or PPO 

• HSA – Employer contribution (HDHP only) 

• Volunteer Time Off 

• Career Development / Recognition 

• Fitness Reimbursement 

• Hybrid Work Schedule 

   

As an Equal Opportunity Employer, AssetMark is committed to building a diverse and inclusive workplace where everyone feels valued.