Director, Security

About Platform.sh

The Platform.sh Platform-as-a-Service (PaaS) removes the complexities of cloud infrastructure management and optimizes development-to-production workflows, reducing the time it takes to build and deploy applications. Delivering efficiency, reliability, and security, giving development teams both control and peace of mind. Built for developers, by developers.

Adopted and loved by 16,000+ developers, 7,000 customers, and proven over the last 8 years. Platform.sh provides out-of-the-box capabilities that serve as the launchpad for creative development teams’ out-of-the-box thinking.

We provide 24x7 support, managed cloud infrastructure, and automated security and compliance with an all-in-one PaaS. We give our customers complete control over their data by keeping applications secure and available around the clock.

Platformers are a remote, global workforce, and we thrive in a multicultural team. We are committed to open source and an open, welcoming environment. Our team spans the globe and the experience spectrum. What's our commonality, our cultural fabric? A curious spirit and a thirst for knowledge; an eagerness for innovative ideas and cultures. We believe we can build anything together in an environment that frees you to do your best work.

Bring your expertise and enthusiasm to our growing, global organization. Your contributions, collaboration, and unique point of view are recognized and valued here.

Position Summary

Platform.sh is in search of a seasoned professional to take the helm as our Director of Security. In this pivotal role, you'll be the driving force behind elevating security measures, ensuring unwavering confidentiality, integrity, and availability of our systems and data. Your responsibilities span crafting and executing robust security strategies, skillfully leading a team of security engineers, and spearheading the implementation of cutting-edge security measures throughout the organization. If you're passionate about shaping and reinforcing the security landscape, your expertise is welcomed to lead our security endeavors to new horizons.

What you can expect

• Oversee day-to-day security operations, managing incident response and vulnerability with seamless efficiency.
• Take charge of deploying and maintaining security technologies, actively contributing to global cyber resilience.
• Engage in assessing new technologies for security implications, leading innovation in forward-thinking security strategies.
• Lead security projects from initiation to completion, emphasizing quality, timing, and operational readiness with a dynamic and proactive approach.
• Develop and deliver engaging security training programs, fostering a culture of awareness and vigilance across our dedicated global team.
• Attract, retain, and nurture a standout global security engineering team, defining clear goals and promoting a culture of innovation and collaboration.
• Play a pivotal role in guiding the global security team to develop and implement a comprehensive strategy aligned with our exciting business goals.
• Collaborate closely with Risk Audit and Privacy Teams, providing essential support for compliance and standards excellence.
• Utilize agile leadership to establish swift feedback loops with the business, ensuring efficient and effective problem-solving.
• Seamlessly integrate security measures into development and operations through vibrant collaboration with cross-functional teams.
• Cultivate robust connections with external partners and vendors, contributing to fortifying our security posture for a secure and promising future in this dynamic role.

What you bring

• 5+ years in a security leadership role and a passion for leading and mentoring diverse teams of security professionals, with a track record of guiding both individual contributors and leaders.
• Extensive knowledge of day-to-day security operations, coupled with the ability to formulate and execute comprehensive security strategies that are aligned with broader business objectives.
• Proven track record in developing and delivering impactful security training programs.
• In depth expertise in cloud security best practices and technologies, showcasing hands-on experience in GCP, AWS, and Azure.
• Demonstrated success in leading information security initiatives with the ability to implement and communicate effectively at a company-wide level.
• Proven track record complying with regulatory requirements and compliance standards such as GDPR, PCI, SOC2, etc.
• Possesses a relevant Security Certification (e.g., CISSP, CISM), demonstrating a commitment to professional excellence.
• Heavy experience with Linux (preferably Debian-based)
• Excellent communication and collaboration skills with diverse functional teams, including global communication, stakeholder management, and articulation of complex concepts.
• Global collaboration experience with cross-functional teams, particularly in close partnership with Risk Audit teams.
• Bachelor's or advanced degree in Computer Science, Information Security, or a related field is preferred.

This is a remote job.

We’re a worldwide, distributed team looking for the best talent. Our remote model has been in practice and thriving since 2014. To us, remote work means flexibility and having truly diverse, global teams. To maximize team collaboration with the team, this role is preferred in Europe or America's Eastern timezone.

Company perks and benefits

• An innovative product you can believe in. We’re sustainably changing the way companies develop and manage their web applications
• We’re voted as A Best Place to Work by 96% of our employees, Forbes Top 30 Companies for Remote Jobs, and in France Best Workplaces for Women
• Hands on leadership that cares in a flexible, open work environment, where your voice is encouraged. We can always find ways to do better and look forward to hearing your ideas
• A global team, rich with culture and diversity
• Company-wide DEI initiative that you can be a part of
• Team gatherings
• Fair PTO (standards based on location)
• Inclusive parental leave (timeline based on location)
• Healthcare, dental, and vision (US, CA, UK, and FR employees only)
• Tandem – a pool of linguists from around the world willing to help each other work on learning new languages
• Company shares
• Unlimited Platform.sh accounts

How we hire

We know that a great hire won’t meet every requirement that we’ve outlined. If you can see yourself elevating the team, we want to hear your story. Few of us would be here had we not taken a chance.

You can expect 4 interviews on Google Meet to follow the order below. Should you successfully move through the entire process you will have the opportunity to meet with a variety of Platformers. Our goal is to ensure you can make the most informed decision on whether this role, and our culture aligns with what you’re looking for in your future working environment.

1. 45 Minutes with Talent Acquisition
2. 60 Minutes with Hiring Manager (SVP, Operations Engineering)
3. 60 Minutes with Team (Director, Audit Risk + SVP, Data Protection Compliance)
4. 45 Minutes with CTO

All roles require background checks.