Chief Information Security Officer H/F (IT) (Toronto)

Location: Remote (U.Type: US Applicants – Full-Time; Canadian Applicants – Independent Contractor We\'re scaling rapidly and have a growing pipeline of opportunities that demand exceptional talent across disciplines. Our mission is to bring on individuals, from creative producers to technical experts to entrepreneurial leaders, who can help us realize this next chapter of growth. Leaders roll up their sleeves, teams work flat, and everyone contributes to what ships. We invite critique, learn quickly, and keep raising the bar. Every product, strategy, or asset we create must be both beautiful and functional; Across strategy, engineering, design, data, and operations, we seek out teammates who raise the bar and make us better. We partner with organizations of all sizes to explore, design, and implement AI strategies that are secure, scalable, and human-centered. We believe AI should amplify human potential, not replace it, and we build with that conviction in every engagement. From advisory and tooling to implementation and education, we meet clients where they are and help them integrate AI in ways that align with their mission and values. And through it all, we lead with purpose, love, and adventure. This is not a traditional enterprise CISO role where you inherit a legacy infrastructure, manage a large team, and maintain the status quo. You are joining at the frontier of AI security — designing systems that don\'t yet exist, solving problems the industry is only beginning to name, and treating security not as a cost center but as a strategic and commercial advantage. We\'re deploying AI agents at scale across client environments, building our own AI-powered tools, and advising organizations on how to safely integrate autonomous systems into mission-critical workflows. That creates a unique security mandate: you must secure our internal operations, embed security directly into the AI products we build, and help clients deploy agents safely in regulated, high-stakes environments. You\'ll have the rare opportunity to shape how an entire category of technology gets secured. If you\'ve been looking for a role where security is core to the product, where you can build things that matter, and where your work influences the broader conversation around AI safety and governance, this is it. You\'ll architect our internal security posture across infrastructure, data, and AI systems, establish governance models for how we deploy agents safely, and ensure we\'re prepared for compliance frameworks like SOC 2, ISO, and potentially FedRAMP as we scale into enterprise and government clients. Build security into AI agent systems as a first-class product feature. You\'ll design guardrails, monitoring, and policy enforcement for autonomous agents — ensuring they operate within defined boundaries, audit their own actions, and surface anomalies in real time. you\'ll implement these systems in production environments where they directly impact client outcomes. The security tooling you build internally may become standalone offerings. Lead incident response, threat modeling, and adversarial testing. You\'ll build and run red team exercises against our AI systems, model attack vectors that don\'t yet have names, and develop response frameworks for risks unique to agentic AI — things like prompt injection at scale, model extraction, or adversarial manipulation of agent behavior. Serve as the public face of AI security for Human Agency. You will publish, speak, and help shape the broader conversation around AI risk, alignment, and governance. If the industry doesn\'t yet have consensus on how to secure a given AI capability, you\'ll be one of the people defining it. You\'ll implement zero-trust architectures, secure multi-agent systems, deploy monitoring and detection tools, and build secure data pipelines. This is not a role where you delegate all technical work — you write code, you configure systems, you debug in production when necessary. You\'ve served as a CISO, VP of Security, or Head of Security at a high-growth tech company, ideally one building or deploying AI systems at scale. You have deep, hands-on experience securing AI and machine learning systems — not just theoretical knowledge, but real work protecting LLM architectures, model training pipelines, and inference infrastructure. You\'ve built and operated cloud-native security programs across AWS, GCP, or Azure, including zero-trust frameworks, identity and access management, and secure multi-tenant architectures. You understand threat modeling and red teaming deeply, and you\'ve led adversarial exercises against complex systems — ideally including AI-specific attack vectors like prompt injection, model inversion, or data poisoning. You\'ve designed and implemented security monitoring, incident response, and compliance programs that scale — you know what valuable looks like at every stage from startup to enterprise readiness. You have a track record of building or contributing to security products, not just internal programs — something you shipped that customers used, or tooling that became infrastructure for others. The fact that no one has secured autonomous AI agents at scale yet doesn\'t intimidate you — it excites you. You understand that security decisions have business implications, and you can articulate trade-offs in language that non-security stakeholders understand and respect. You are technical enough to earn respect from engineers and pragmatic enough to earn trust from clients. You can debug a containerized agent deployment in the morning and present to a CFO in the afternoon. We value diverse perspectives and are committed to building inclusive, high-performing teams where everyone can do their best work. # Apply on Kit Job: kitjob.ca/job/2psglq