RemoteLeaf Logo
Log in Sign up

Head of Security

1 month, 3 weeks ago
United Kingdom, Germany, Netherlands, Poland, Spain
Full-time
Executive
Security Engineer
DevOps and Infrastructure
AWS DevSecOps Docker GitHub Network Security Notion
Apply Now
LocalStack

LocalStack

LocalStack provides a local development and testing environment that emulates over 100 AWS services, enabling developers to build and test cloud applications offline with high fidelity and faster feedback loops, ultimately streamlining the development ...

Internet Software & Services
11-50
Founded 2021
View All Jobs 4

Description

  • Ensure a robust security posture across product components, including LocalStack emulators, LocalStack Cloud platform, and the data warehouse.
  • Lead incident monitoring, intrusion detection, and vulnerability management initiatives.
  • Define and implement regular security auditing procedures across systems, access controls, and configurations.
  • Design and deliver a sustainable, scalable vendor risk assessment process (via tooling, delegation, or automation) and complete vendor risk assessments to support the sales process.
  • Ensure secure configurations and permission models in collaboration with engineering teams.
  • Identify gaps between claimed and actual compliance and propose and lead corrective actions to close them.
  • Own documentation of security controls, configurations, and policies and keep documentation accessible to stakeholders.
  • Engage with internal stakeholders to evaluate threats, attack vectors, and security trade-offs.
  • Generate and distribute internal audit and compliance reports at regular intervals.

Requirements

  • 7+ years in a security engineering or security compliance role.
  • Experience leading vendor risk assessments and building compliance frameworks from the ground up.
  • Strong background in API design and build and experience with DevSecOps and incident response.
  • Expert knowledge of threat modelling and vulnerability management.
  • Practical experience with intrusion detection, network security, and Linux/Unix OS hardening tools.
  • Practical cloud security experience (AWS preferred).
  • Good knowledge of common standards such as SOC 2, ISO 27001, and GDPR (formal certification not required).
  • Strong documentation and communication skills with the ability to explain complex topics to non-experts.
  • Good understanding of US and EU security and compliance expectations.
  • Prior engineering experience strongly preferred and a pragmatic, risk-based approach to decision-making.

Benefits

  • Fully remote role (distributed global team).
  • Competitive salary.
  • Annual company retreat.
  • Two extra company-wide holidays.
  • Friendly and inclusive workplace culture with community guilds and online company events.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Aledade

Senior Security Engineer II (Engineering & Tooling), Remote

Aledade 1K-5K Health Care Providers & Services

Aledade is hiring a Senior Security Engineer II to design and operate security tooling and infrastructure protections for a remote, cloud-focused environment supporting its healthcare platform.

United States Full-time Senior Security Engineer
Ansible Argo CD AWS Azure Bash Buildkite Chef CrowdStrike Cybersecurity Datadog DevSecOps Docker GCP Helm HIPAA Jenkins Kubernetes Network Security PowerShell Python SIEM Splunk Terraform
5 hours, 12 minutes ago
Binance

Blockchain Security Engineer (Smart Contract Auditing)

Binance 5K-10K Capital Markets

Binance is hiring a Blockchain Security Engineer to perform smart contract auditing and on-chain security analysis across wallets, blockchains, and related blockchain products in a remote role based in Taipei/Asia.

Taiwan Full-time Junior Security Engineer
Blockchain Encryption Git Go Python Rust VS Code
5 hours, 27 minutes ago
Sysdig

Staff Threat Research Engineer

Sysdig 251-1K IT Services

Sysdig is hiring a Staff Threat Research Engineer to research cloud-based attacks and drive threat detection and security solutions for containers, Kubernetes, and cloud environments.

United States Full-time Lead Research Scientist Security Engineer
$163k-$204k
Cybersecurity Kubernetes Linux Penetration Testing
5 hours, 42 minutes ago
Pingwind

Senior Technical Lead for Systems Security

Pingwind 51-250 Internet Software & Services

PingWind is hiring a remote Senior Technical Lead for Systems Security to assess and strengthen security compliance for federal systems, with the main objective of ensuring required controls are met and risks are identified and mitigated.

Anywhere Full-time Lead Security Engineer
Cybersecurity
5 hours, 42 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers