Key skills
AWSAzureCloudCyber SecurityGoogle Cloud PlatformSDLCGCPGoogle CloudIAMCI/CDLeadershipRisk ManagementCollaborationCloud Security
About this role
Role Overview
- Own end-to-end cybersecurity, information security, and IT security across the company, covering both internal security (breach attempts, internal network monitoring) and product security (product-related threats and risks);
- Define, evolve, and execute the company-wide cybersecurity strategy and security roadmap aligned with business and product priorities;
- Establish and enforce security policies, standards, procedures, and organization-wide security controls;
- Lead security risk management, including risk assessments, risk register ownership, and mitigation planning;
- Ensure compliance with regulatory and industry standards (e.g., GDPR, ISO 27001, SOC 2) and manage internal/external audits;
- Oversee secure architecture across cloud infrastructure, applications, SDLC, and IAM, including review of critical architectural decisions;
- Define and enforce security standards for encryption, key management;
- Own security operations, including monitoring, detection, response capabilities, and incident response for critical (P0/P1) events;
- Drive Application Security and DevSecOps practices (SAST, DAST, SCA, CI/CD security controls, threat modeling) in collaboration with engineering teams;
- Oversee IAM, endpoint, and workforce security, including access control models, EDR strategy, device security, and joiner/mover/leaver processes;
- Lead fraud prevention, vendor security, and internal/external abuse investigation processes, while managing security KPIs, reporting, budget, and team scaling;
- Manage a cybersecurity team, including Cloud Security, SOC, Application Security / DevSecOps, Endpoint Security, IAM, and Information Security functions.
Requirements
- 7+ years of experience in cybersecurity, or similar role;
- Experience in a leadership role;
- Strong expertise in cloud security (AWS, GCP, or Azure);
- Solid understanding of application security and secure SDLC practices;
- Hands-on experience with SIEM, EDR, and incident response processes;
- Deep knowledge of identity and access management models (RBAC, ABAC, least privilege);
- Experience working with compliance frameworks such as ISO 27001, SOC 2, and GDPR;
- Proven track record of building and scaling security programs in growing organizations;
- English
- upper-intermediate or higher (able to communicate in technical discussions).
Tech Stack
- AWS
- Azure
- Cloud
- Cyber Security
- Google Cloud Platform
- SDLC
Benefits
- Health & Wellness Focus;
- Global Medical Coverage;
- Growth Opportunities;
- Benefits Programs (compensation for the gym/stomatology/psychological service & etc.);
- Performance-Driven Rewards;
- Dynamic Work Environment.