Head of Security
OpenSeaFull Time
Expert & Leadership (9+ years), Senior (5 to 8 years)
Candidates should have over 10 years of experience in security engineering or engineering, with at least 4 years of experience leading engineering teams and familiarity with agile development and security. Required knowledge includes implementing secure coding best practices, experience with AWS and Terraform or other cloud configuration tools, understanding of security nuances in cloud-native container-based systems, fundamental knowledge of encryption and best practices, and experience with SOC2, ISO 270001, or equivalent compliance preparation and audits. Vendor management experience is also required. Preferred qualifications include familiarity with GCP and Azure, and experience with SIEM platforms and cloud EDR tools.
The Director of Security will manage Docker's cross-functional Security Engineering team and drive the Security Engineering Roadmap and adoption across all departments. Key responsibilities include setting team goals and objectives, conducting one-on-one meetings, establishing the security posture and processes, and driving enhancements and improvements to security processes. The role involves participating in code reviews, vulnerability remediation, and engineering projects to improve security posture, automation, and controls. This position also serves as a liaison to internal customers and the wider organization, partnering with the Governance, Risk and Compliance team to enforce compliance and audit controls while maintaining engineering velocity.
Containerization platform for application development
Docker offers a containerization platform that enables developers to build, share, and run applications in isolated environments called containers. These containers package applications with their dependencies, ensuring consistent performance across different stages of development and deployment. Docker stands out from competitors by simplifying the development process and enhancing collaboration, with a freemium business model that includes various subscription tiers and services like Docker Hub and Docker Desktop. The company's goal is to streamline software development and deployment, making it easier for developers to manage applications efficiently.