Security Engineer

10+ years in security engineering, with a proven track record in both application and infrastructure security.
Prior leadership experience in high-growth tech companies or startups.
Exceptional communication skills—able to explain complex risks clearly to both technical and non-technical audiences.
Strong background in risk assessment, threat modeling, and vulnerability management.
Deep hands-on experience with GCP, Azure, or AWS.
Solid understanding of infrastructure and API-level security, with a focus on modern challenges.
Familiarity with secure coding practices, ideally in JavaScript/TypeScript and Node.js.
Practical experience with security tooling and automating testing across build and deployment pipelines.

Lead the design and execution of security measures across infrastructure and application layers (GCP, Azure, Kubernetes), ensuring robust protection as we scale.
Develop and implement a comprehensive security vision, aligning best practices across engineering and product teams.
Build and manage a growing security team, recruiting top talent and fostering technical excellence.
Collaborate cross-functionally to integrate security into our systems, CI/CD pipelines, and development lifecycle.
Own relationships with external partners for penetration testing, compliance certifications, and vendor security.
Support customer-facing teams by articulating our security strategy, processes, and compliance efforts clearly and confidently.
Evaluate and strengthen the security of third-party tools and integrations we rely on.
Lead the response to security incidents, coordinate resolution across stakeholders, and ensure long-term fixes are implemented.
Partner with operations and legal teams to ensure readiness for audits (e.g. SOC2) and to maintain high standards in vendor and regulatory security.

No preferred qualifications provided.