Lead Industrial Security Specialist at Boeing assessing compliance with security programs and implementing corrective actions. Involves extensive travel and oversight of security protocols across multiple locations.
About the role
- Director of Engineering, Security in charge of Nexxen's security program and governance. Leading secure practices and collaborating with executives to ensure risk reduction and compliance.
Responsibilities
- Own the strategy, delivery, and lifecycle of our security program across applications, cloud/infrastructure, identity, data, and SOC operations.
- Lead secure-by-design practices, incident readiness, and AI security governance while partnering with executives and cross-functional leaders to deliver measurable risk reduction and compliance at scale.
- Establish secure SDLC and architecture guardrails, ensures detection and response effectiveness, governs security vendors and budgets, and drives process transformation.
- Collaborate closely with Engineering/Platform on CI/CD and Kubernetes, with IT for endpoint and access policy enforcement, with Data on protection and lineage, and with Legal/Compliance on SOC 2/SOX/GDPR and AI governance.
Requirements
- 10+ years in Security Engineering with 5+ years leading managers and multi-domain portfolios (SOC/IR, AppSec, Cloud/Infra, Identity)
- Hands-on leadership with:
- AWS multi-account security (Organizations, Control Tower, IAM, SCPs, GuardDuty, Security Hub, Macie, KMS, CloudTrail, Config)
- Kubernetes/EKS, container security, service mesh, ingress, and secrets management (Vault/Secrets Manager)
- Secure SDLC with CI/CD (GitHub/GitLab), Terraform/Terragrunt, OPA/Conftest, SAST/DAST/SCA (CodeQL, Semgrep, Snyk, ZAP/Burp)
- Web/API protections (AWS WAF/Cloudflare), SBOM/signing (Syft/Grype, Cosign/Sigstore), Dependabot/Renovate, Gitleaks
- Endpoint/Network security (Palo Alto/Fortinet, Zscaler/ZTNA, CrowdStrike/SentinelOne, Jamf/Intune)
- Identity/SSO with Azure AD/Entra ID, PIM, Conditional Access, SCIM; Okta or AWS IAM Identity Center
- SIEM/SOAR (Cyrebro; Tines/XSOAR) and threat intel (MISP/OpenCTI); GRC (Drata/Vanta/ServiceNow), Jira/Confluence
- Proven delivery of large-scale security transformations and measurable risk reduction; executive presence and board/audit experience.
- Excellent leadership, stakeholder management, and team-building skills.
- Strong problem-solving, analytical abilities, and crisp decision-making.
- Exceptional communication and interpersonal skills.
- Ability to operate under pressure and manage multiple priorities.
Benefits
- medical
- dental
- vision
- disability insurance
- 401(k)
- EAP
- parental leave
- unlimited vacation
- company-paid holidays
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Security Adviser handling governance and US integration tasks at Boeing. Liaising with US - based partners and coordinating crisis management for international security operations.
Senior Manager of IT overseeing operational security services for Xcel Energy. Leading teams to ensure compliance and effective risk management across enterprise security operations.
IT Security Administrator managing access control and audit evidence across systems at Xcel Energy. Involves training security staff and handling incident investigations.
Senior ML Security Engineer developing security tools and frameworks for ML workflows. Ensuring proactive vulnerability detection and compliance with ML security standards at NXP.
Lead a multidisciplinary team at NXP focused on the proactive identification and analysis of security vulnerabilities in semiconductor products. Drive innovative approaches to security testing and team management.
Security Architect designing security architectures for embedded products at NXP. Collaborating with teams on threat assessments and managing security requirements in IoT/Automotive domains.
Security Software Engineer at Pinterest developing IAM infrastructure and tools for identity and authorization. Collaborating on mission - critical features in a team - focused environment.
Senior Network and Security Information Analyst defining and implementing network and information security at Airbus. Managing security assets and compliance across the organization while documenting and reporting vulnerabilities.
Associate Consultant for Microsoft Security focused on supporting the delivery of security solutions. Collaborate with experienced consultants and learn in a remote - first environment with occasional onsite work.