RemoteLeaf Logo
Log in Sign up

Head of Security

2 hours, 55 minutes ago
Spain, United Kingdom, Germany, Netherlands, Poland
Full-time
Lead
Security Engineer
Cybersecurity
AWS DevSecOps Docker Linux Network Security Unix
Apply Now
LocalStack

LocalStack

LocalStack provides a local development and testing environment that emulates over 100 AWS services, enabling developers to build and test cloud applications offline with high fidelity and faster feedback loops, ultimately streamlining the development ...

Internet Software & Services
11-50
Founded 2021
View All Jobs 8

Description

  • Ensure the security posture of the product across the LocalStack emulators, LocalStack Cloud platform, and data warehouse.
  • Lead initiatives for incident monitoring, intrusion detection, and vulnerability management.
  • Define and implement regular security auditing procedures across systems and access controls.
  • Build a sustainable process for vendor risk assessments and other security-related initiatives through tooling, delegation, or automation.
  • Complete and submit vendor risk assessments to support the sales process.
  • Ensure secure configurations and permission models in collaboration with engineering teams.
  • Identify gaps between claimed and actual compliance and lead corrective actions.
  • Own documentation of security controls, configurations, and policies.
  • Evaluate security threats and attack vectors with internal stakeholders.
  • Generate and distribute internal audit and compliance reports on a regular cadence.

Requirements

  • 7+ years of experience in a security engineering or security compliance role.
  • Experience leading vendor risk assessments and building compliance frameworks from the ground up.
  • Strong background in API design and build.
  • Strong background in DevSecOps and incident response.
  • Expert knowledge of threat modelling, vulnerability management, and tools such as intrusion detection, network security, or Linux/Unix OS hardening.
  • Practical experience with cloud security, with AWS preferred.
  • Good knowledge of common standards such as SOC 2, ISO 27001, and GDPR, even if not formally certified.
  • Strong documentation skills and ability to explain complex topics to non-experts.
  • Good understanding of US and EU security and compliance expectations.
  • Prior engineering experience strongly preferred, even if you are not coding daily anymore.
  • Proactive, pragmatic, and capable of risk-based decision-making.

Benefits

  • Fully remote work.
  • Competitive salary.
  • Annual company retreat.
  • 2 extra company-wide holidays.
  • Friendly and inclusive workplace culture with community guilds and online company events.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Twilio

Senior Manager, Platform Engineering - Secure Supply Chain

Twilio 5K-10K Diversified Telecommunication Services

Twilio is hiring a Senior Manager, Platform Engineering - Secure Supply Chain to lead the company’s secure supply chain infrastructure and drive secure, efficient software delivery across its engineering organization.

United States Full-time Lead Platform Engineer Security Engineer
$207k-$305k
AWS Azure Buildkite CI/CD GCP GitHub GitHub Actions
40 minutes ago
Precision For Medicine

Microsoft 365 Governance Administrator

Precision For Medicine 1K-5K Pharmaceuticals

Precision for Medicine is seeking a Microsoft 365 Governance Administrator to modernize and govern its enterprise collaboration environment across SharePoint, Teams, OneDrive, and the Power Platform.

United Kingdom Full-time Senior Security Engineer Systems Administrator
Power BI PowerShell
55 minutes ago
Later

Senior Security Engineer & Identity Engineer

Later 51-250 Media

Later is hiring a Senior Security Engineer to strengthen the security foundations of its AI-powered influencer marketing platform by embedding secure-by-design practices across identity, infrastructure, and development workflows.

United States Full-time Senior Security Engineer
$145k-$175k
C# CI/CD CloudFormation OWASP SIEM Terraform
1 hour, 25 minutes ago
True Zero Technologies

ICAM Engineer (R-00100)

True Zero Technologies 11-50 Internet Software & Services

ICAM Engineer at an engineering and architecture team in a fully remote role focused on designing and managing identity, authentication, and access control solutions across cloud and on-premises environments.

Anywhere Full-time Senior Security Engineer
AWS Azure Cybersecurity GCP HIPAA JavaScript OAuth OpenID Connect PowerShell Python Salesforce SAML
1 hour, 27 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers