Director of IT & Security

• Career

Category:  Development

Director of IT & Security

Reports To: VP Software Development & IT

Hours: M–F 8:00 AM – 4:30 PM

Compensation: 100K – $110K

If you take pride in building secure, efficient, and impeccably engineered systems, this role will feel like home. As our Director of IT and Security, you will guide the architecture, stability, and protection of a modern AWS environment while applying precise logic to maintain SOC 2 and HIPAA compliance. You will troubleshoot complex issues, refine technical controls, and strengthen a company-wide security posture that relies on your accuracy and depth of knowledge. Your leadership will shape reliable infrastructure, disciplined processes, and high-quality operational outcomes that directly support our growth and innovation.

The Mailworks is a woman-owned, family-run business specializing in results-driven direct mail campaigns for a nationwide client base. With 40+ years of experience and over 90 professionals across strategy, design, production, and technology, we combine deep industry knowledge with modern tools to help businesses grow. We produce and deliver over 96 million pieces annually from our in-house facility and are transforming the direct mail space through innovation, service, and our proprietary software platforms.

Supervisory Responsibilities: Oversees IT Support Technician

Duties:  

LMA 

• Lead, manage, and hold third party vendors  accountable to company standards 
• Oversee daily IT operations and ensure reliable technology support across departments.
• Ensure company-wide adherence to SOPs supporting SOC 2 and HIPAA requirements.
• Promote a proactive, service-oriented, and security-conscious culture throughout the organization.

   

INFRASTRUCTURE MANAGEMENT

• Oversee maintenance, security, and scalability of The Mailworks’ AWS cloud environment.
• Manage system architecture, backups, storage, and access control for all cloud resources.
• Ensure reliable operation of company servers, virtual machines, and internal applications.
• Collaborate with Engineering and Product teams to support deployments and DevOps processes.
• Evaluate and implement infrastructure improvements for stability and efficiency.
• Serve as an escalation point for complex technical issues across systems..

   

INFORMATION SECURITY & COMPLIANCE

• Own and maintain The Mailworks’ information-security framework, ensuring full SOC 2 and HIPAA compliance.
• Partner with Vanta and third-party auditors to manage documentation, evidence collection, and remediation.
• Maintain and monitor data-protection policies, encryption standards, and secure-transmission practices.
• Oversee user-access management, password policy enforcement, and MFA compliance.
• Conduct regular risk assessments, vulnerability scans, and penetration-test follow-ups.
• Manage incident-response, breach-notification, and disaster-recovery procedures in accordance with HIPAA requirements.
• Lead employee training on data-handling, privacy, and security best practices via informational e-mails, alerts, and scheduled KnowBe4 training.

IT OPERATIONS & SUPPORT

• Monitor company-wide IT tickets  to ensure prompt, high-quality user support.
• Manage hardware inventory, software licensing, and system provisioning.
• Maintain reliable operation of networks, printers, and office connectivity.
• Define and enforce standards for workstation setup, patching, and security updates.
• Ensure proper employee onboarding/offboarding with correct access provisioning and data revocation.

PROJECT MANAGEMENT & STRATEGY

• Plan and execute IT-related projects, upgrades, and integrations.
• Manage vendor relationships for technology services, hardware, and security tools.
• Evaluate emerging technologies that improve reliability, compliance, and automation.
• Collaborate with other directors to align IT and security strategy with company goals.
• Support business-continuity and disaster-recovery readiness through documented and tested plans.

Required Skills/Abilities: 

• Strong leadership and communication skills.
• Deep expertise in AWS infrastructure, IAM, and security configuration.
• Hands-on experience maintaining SOC 2 and HIPAA compliance.
• Knowledge of IT systems, networking, endpoint management, and identity-access control.
• Familiarity with Vanta or similar compliance-automation platforms.
• Excellent analytical and troubleshooting abilities.
• High integrity and commitment to data privacy and operational excellence.
• Proficiency in database technologies including MS SQL Server and DynamoDB.

Success Indicators

• SOC 2 and HIPAA controls maintained, tested, and passed during audit.
• AWS infrastructure remains secure, cost-efficient, and reliable.
• All endpoints, servers, and systems patched, logged, and monitored.
• IT support requests resolved promptly with high user satisfaction.
• Documented security incidents resolved with zero recurring issues.
• Effective cross-department collaboration with Engineering and Product teams.

Physical Requirements: 

While performing the duties of this job, the employee is regularly required to talk or hear . The employee frequently is required to sit; walk; uses hands to finger, handle or feel; and reach with hands and arms.

Other Duties:

Please note that this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job.  Duties, responsibilities, and activities may change at any time with or without notice.

Apply Now