Cybersecurity Visionary

Cloud Security Strategist We are seeking a visionary leader to build and scale our global security function. This role involves designing enterprise-grade security programs, engineering security tools, and embedding best practices into fast-moving development environments. Security Strategy, Leadership & Program Development: • Build and lead the company's global security and compliance function from the ground up.• Develop and implement the company-wide security strategy, policies, and frameworks aligned with business and regulatory goals.• Conduct organization-wide risk assessments, vulnerability scans, and incident response exercises.• Drive security awareness and training programs to strengthen company-wide accountability.• Collaborate with executive leadership to ensure security goals align with organizational priorities. Technical Security Engineering: • Lead the design and development of advanced security testing and monitoring platforms, including distributed fuzzing systems and validation frameworks.• Conduct secure architecture reviews and threat modeling for infrastructure, APIs, smart contracts, and cloud-native services.• Integrate Secure SDLC practices into CI/CD pipelines — automating vulnerability discovery, testing, and compliance reporting.• Perform deep-dive analysis of vulnerabilities, exploits, and mitigations across web, mobile, and blockchain systems.• Partner with Engineering and DevOps to ensure secure-by-design implementation in infrastructure-as-code and deployments. Cloud, Infrastructure & Data Protection: • Oversee cloud security architecture (AWS preferred), including network segmentation, IAM, and continuous monitoring.• Manage VPNs, multi-region access, and secret management tools (Vault, KMS, etc.).• Ensure data privacy and protection measures are embedded in all systems and products.• Lead investigations, containment, and response in the event of security incidents or data breaches. Compliance, Risk & Governance: • Develop and maintain security compliance frameworks such as SOC 2, ISO 27001, PCI DSS, GDPR, and CCPA.• Prepare and manage internal and external audits and certifications.• Identify, document, and mitigate enterprise security and compliance risks.• Establish a 'privacy by design' and 'security by default' culture in collaboration with legal and product teams. Communication & Collaboration: • Serve as the main point of contact for all internal and external security and compliance matters.• Partner cross-functionally with Product, Engineering, and Operations to align security controls with business needs.• Deliver clear reporting and recommendations to leadership on security posture, incidents, and ongoing improvements. The ideal candidate has 7+ years of experience in security engineering, product security, or infrastructure security roles, with a proven track record of designing and deploying security tools and frameworks at scale. They should have expertise in AWS, Docker/Kubernetes, and large-scale distributed systems, as well as strong knowledge of application security (OWASP, STRIDE, TARA) and vulnerability mitigation. Proficiency in one or more system languages (Java, C, C++, Rust, Go) and one scripting language (Python, Shell) is required. Experience with blockchain and smart contract security is preferred. The candidate should demonstrate ability to automate security controls, conduct penetration testing, and perform design reviews, with strong communication and leadership skills.]]>