Chief Information Security Architect

Job DescriptionWe're seeking an experienced security leader to build, manage, and scale our global security and compliance programs.This role is ideal for someone who can design enterprise-grade security programs, engineer security tools, and embed best practices into fast-moving development environments.Develop and implement the company-wide security strategy, policies, and frameworks aligned with business and regulatory goals.Conduct organization-wide risk assessments, vulnerability scans, and incident response exercises.Drive security awareness and training programs to strengthen company-wide accountability.Collaborate with executive leadership to ensure security goals align with organizational priorities.Technical Security EngineeringLead the design and development of advanced security testing and monitoring platforms, including distributed fuzzing systems and validation frameworks.Conduct secure architecture reviews and threat modeling for infrastructure, APIs, smart contracts, and cloud-native services.Integrate Secure SDLC practices into CI / CD pipelines — automating vulnerability discovery, testing, and compliance reporting.Perform deep-dive analysis of vulnerabilities, exploits, and mitigations across web, mobile, and blockchain systems.Partner with Engineering and DevOps to ensure secure-by-design implementation in infrastructure-as-code and deployments.Cloud, Infrastructure & Data ProtectionOversee cloud security architecture (AWS preferred), including network segmentation, IAM, and continuous monitoring.Manage VPNs, multi-region access, and secret management tools (Vault, KMS, etc.).

Develop and maintain security compliance frameworks such as SOC 2, ISO, PCI DSS, GDPR, and CCPA. Prepare and manage internal and external audits and certifications. Identify, document, and mitigate enterprise security and compliance risks. Establish a 'privacy by design' and 'security by default' culture in collaboration with legal and product teams. Communication & Collaboration Serve as the main point of contact for all internal and external security and compliance matters. Partner cross-functionally with Product, Engineering, and Operations to align security controls with business needs. Deliver clear reporting and recommendations to leadership on security posture, incidents, and ongoing improvements.

7+ years of hands‑on experience in security engineering, product security, or infrastructure security roles. Proven track record designing and deploying security tools and frameworks at scale. Deep understanding of cryptography, secure protocols, and key management systems. Expertise in AWS, Docker / Kubernetes, and large‑scale distributed systems. Strong knowledge of application security (OWASP, STRIDE, TARA) and vulnerability mitigation. Proficiency in one or more system languages (Java, C, C++, Rust, Go) and one scripting language (Python, Shell).

Experience with blockchain and smart contract security preferred. Demonstrated ability to automate security controls, conduct penetration testing, and perform design reviews. Strong communication and leadership skills, with experience mentoring engineers and influencing cross‑functional teams. Demonstrated proficiency in written and spoken English.