Key skills
CloudAIPulumiIAMRisk Management
About this role
Role Overview
- Own and drive our security function end-to-end, combining strategic direction with hands-on technical authority.
- Review, challenge, and strengthen our systems.
- Act as the security authority within engineering.
- Define guardrails and drive remediation when risks arise.
- Build the structure and standards needed as we scale.
- Own the company wide security strategy and architecture.
- Ensure CIRO and SOC 2 alignment.
- Embed strong security practices across infrastructure, applications, and internal systems.
Requirements
- Understand IAM and least privilege principles
- Understand logging, monitoring, and alerting architecture
- Be comfortable reviewing infrastructure-as-code (Pulumi)
- Reason confidently about security architecture across infrastructure and application layers
- Be willing to deepen your technical capabilities where needed
- Have hands-on experience with SOC 2 or comparable audit processes
- Have experience in a regulated environment (fintech, financial services, or similar), ideally CIRO-regulated
- Have a strong understanding of risk management frameworks
- Influence and challenge cloud architecture decisions when needed
- Experience with AI tooling governance or AI-related security considerations is a strong plus
Tech Stack
- Cloud
Benefits
- At Newton, we celebrate our inclusive work environment and welcome members of all backgrounds and perspectives to apply. We are committed to providing reasonable accommodations and will work with you to meet your needs. If you are a person with a disability and require assistance during the application process, please don’t hesitate to reach out!