Related skills
security aws iam regulatory complianceπ Description
- Define and execute multi-year information security strategy aligned with business goals.
- Own Voyager cloud CT platform security (data storage, access, APIs, multi-tenant).
- Embed security in SDLC: threat modeling, code reviews, vuln mgmt, pen tests, IR.
- Extend security to hardware/firmware (Neptune, Triton).
- Lead SOC 2 Type II, ISO 27001; oversee ITAR/EAR and vendor risk.
- Support enterprise sales: respond to security questionnaires and build trust with InfoSec teams.
π― Requirements
- 10+ years in information security with β₯3 years in a senior leadership role.
- Proven success building or maturing security programs at a high-growth tech company.
- Deep expertise in cloud security, especially AWS - IAM, network security, data encryption, cloud-native tooling.
- Strong knowledge of SOC 2, ISO 27001, CMMC, FEDRAMP, ITAR/EAR.
- Track record leading incident response for significant security events.
- Excellent communicator translating risk to business terms; experience with enterprise security questionnaires.
Bonus points
- Background in industrial tech, hardware/IoT security, or manufacturing sectors.
- Experience with medical device, aerospace, or defense industry compliance.
- First/early CISO experience; comfortable with strategy and hands-on execution.
- Relevant certifications: CISSP, CISM, CCSP, or equivalent.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!