about 1 month ago
Remote, WorldwideSenior / Staff+
Responsibilities
- Lead security efforts across infrastructure, applications, internal systems, and employee devices.
- Identify risks and vulnerabilities across the organization and ensure they are addressed.
- Establish scalable security processes and best practices across teams.
- Own the organization's compliance posture and ensure requirements are reflected in day-to-day operations.
- Coordinate relationships with external security firms and auditors.
- Lead the organization through compliance framework certifications end-to-end.
- Define and own the company's security awareness and training program.
- Define and own the Secure Software Development Lifecycle across the engineering organization.
- Review tools, frameworks, and architectures for security risks.
- Identify and mitigate security risks related to AI-driven tooling and automation.
- Own the security tooling strategy and establish monitoring standards.
Requirements
- Proven experience owning or leading a security function.
- Background in security engineering or architecture.
- Experience building or maturing security programs in fast-moving engineering organizations.
- Solid knowledge of key compliance frameworks including SOC 2 and ISO 27001.
- Experience guiding organizations through certification and audit processes.
- Strong understanding of modern application security practices.
- Familiarity with cloud infrastructure security and developer tooling.
- Understanding of AI security risks and emerging attack vectors is a strong plus.
Benefits
- Annual team offsites in various locations.
- 30 days of PTO.
- Flexible remote days and working hours.
- Equity participation from day 1.
- Entitlement to work computer of choice.
- Annual 1,000€ personal development budget after 6+ months.
- One-time 1,000€ remote budget for coworking or office setup.