Head of IT, Security & Compliance ensuring the IT infrastructure and compliance at CameraMatics. Leading security initiatives and regulatory obligations in a hybrid work setting.
About the role
- Senior Security Engineer safeguarding AI-native document generation platform, leading security strategy and collaborating across functions for risk management and compliance.
Responsibilities
- Identify and address security risks through comprehensive assessments, mitigation strategies, and execution.
- Ensure secure coding and implement systems to protect against unauthorized access and data breaches.
- Develop and execute incident response plans, conduct forensic analysis, and take preventive measures.
- Maintain compliance with regulations and industry standards, promote transparency, and address ethical concerns.
- Establish real-time monitoring systems, conduct regular assessments, and proactively respond to threats.
- Evaluate and secure third-party integrations to prevent vulnerabilities.
- Educate and raise awareness for security best practices across the engineering team.
- Maintain up-to-date documentation on protocols, incidents, and improvements; report regularly to stakeholders.
Requirements
- 5+ years in a security-focused engineering role, with hands-on technical architecture, implementation, and oversight experience
- Expertise in SAST/DAST, application security, and CI/CD pipeline integration
- Deep knowledge of AI-specific threats (prompt injection, model poisoning, membership inference, adversarial perturbation, output manipulation)
- Experience implementing security principles, operating system and web application security, and familiarity with the OWASP Top 10 and common threat tactics
- Knowledge of next-generation security technologies (SASE, CASB, RASP)
- Hands-on experience with patch management, software supply chain security, and artifact repositories (e.g., JFrog, Snyk)
- Strong programming or scripting skills in at least one language (e.g., Python, Ruby, Node.js)
- Relevant cybersecurity certification (CISSP, CISM, CISA, CRISC, GIAC, etc.)
- Up-to-date on technology and vulnerability trends; ability to secure cloud computing applications and ecosystems
- Application/infrastructure-level security design experience, including modern mitigation techniques (e.g., DNS-SEC, cryptographic fundamentals)
- Strong automation skills with Python
Benefits
- Choice of medical, dental, and vision insurance plans for you and your family
- Additional insurance coverage options for life, accident, or critical illness
- Flexible paid time off, sick leave, short-term and long-term disability
- 10 US observed holidays, and Canadian statutory holidays by province
- A home office stipend
- 401(k) for US-based employees and RRSP for Canada-based employees
- Paid parental leave
- A local in-person meet-up program
- Hubs in San Francisco and Toronto
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Security Officer conducting interior and exterior patrols to ensure safety and monitor access in data centers. Collaborating with clients and performing various security duties.
Managing Director for Security and Resilience at Edison Electric Institute overseeing security and resilience operations for electric power system. Leading a team of experts in national security and regulatory processes.
Head of AI Security at Absa developing security frameworks for AI systems. Responsible for safeguarding AI platforms against cybersecurity threats and ensuring secure development practices.
Security Officer responsible for armed security at the Arizona State Courts Building. Patrolling, monitoring security systems, and ensuring safety during shifts, holidays, and weekends.
Senior Security Engineer managing Privileged Access Management solutions for ZEISS. Engineering and supporting PAM ecosystem, with a focus on BeyondTrust Password Safe, and ensuring reliable service delivery.
Principal Technology Risk & Control Officer managing technology risk assessments and controls at Northern Trust, a leading financial institution. Collaborating across multiple technology domains to ensure alignment with business objectives and regulatory expectations.
Senior Mobile Developer focused on Information Security developing mobile applications for Android and iOS using Flutter. Ensuring adherence to best security practices and developing secure solutions.
Application Security Architect with software development and application security experience needed for WEX. Responsible for securing applications by guiding and assessing security solutions.
Network Engineer specialized in Security managing systems for Arauco, based in Santiago. Overseeing security protocols and configuration of security equipment in a corporate setting.