LocalStack

Head of Security

LocalStack

full-time

Posted on:

Location Type: Remote

Location: Spain

Visit company website

Explore more

AI Apply
Apply

Job Level

Lead

Tech Stack

AWSCloudLinuxUnix

About the role

  • Ensure robust security posture of our product across various components
  • Lead initiatives for incident monitoring, intrusion detection, and vulnerability management
  • Define and implement regular security auditing procedures across systems and access controls
  • Deliver a sustainable process for vendor risk assessments and other security-related initiatives
  • Ensure secure configurations and permission models while collaborating with engineering teams
  • Identify gaps between claimed and actual compliance and propose/lead corrective actions
  • Own documentation of security controls, configurations, and policies
  • Engage with internal stakeholders to evaluate different security threats and attack vectors
  • Generate and distribute internal audit and compliance reports at regular intervals

Requirements

  • 7+ years in a security engineering or security compliance role
  • Experience leading vendor risk assessments and building compliance frameworks from the ground up
  • Strong background in API design and build
  • Strong background in DevSecOps, incident response, and risk-driven security leadership
  • Expert knowledge of threat modelling, vulnerability management, and tools like intrusion detection, network security, or Linux/Unix OS hardening
  • Practical experience with cloud security (AWS preferred)
  • Good knowledge of common standards (e.g., SOC 2, ISO 27001, GDPR)
  • Strong documentation skills and ability to make complex topics accessible to non-experts
  • Good understanding of US and EU security and compliance expectations
  • Prior engineering experience preferred.
Benefits
  • 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
security engineeringsecurity compliancevendor risk assessmentscompliance frameworksAPI designDevSecOpsincident responsethreat modellingvulnerability managementcloud security
Soft Skills
documentation skillscommunicationleadershipcollaborationproblem-solving
Certifications
SOC 2ISO 27001GDPR