Director, Security

Summary

Join Docker's remote-first team as the Director of Security, leading the Security Engineering team and driving the security roadmap across all departments. You will manage team goals, security posture, and processes, ensuring Docker's safety and compliance. This cross-functional role involves collaborating with engineering teams, internal customers, and the Governance, Risk, and Compliance team. You will participate in code reviews, vulnerability remediation, and larger-scale engineering projects. The ideal candidate possesses extensive experience in security engineering, team leadership, and implementing secure coding practices in cloud-native environments.

Requirements

• 10+ years of experience in security engineering and/or engineering
• 4+ years experience leading engineering teams and familiarity with agile development and security
• Knowledge and experience implementing secure coding best practices
• Experience with AWS
• Experience with Terraform or other cloud configuration tools
• Understanding of security nuances in cloud-native container-based systems
• Fundamental knowledge of encryption and best practices
• Have participated in SOC2, ISO 270001 or equivalent compliance prep and audits
• Experience in Vendor management

Responsibilities

• Manage Docker’s cross-functional Security Engineering team
• Drive the Security Engineering Roadmap and adoption across all Docker departments
• Set team goals and objectives, conduct regular one-on-one meetings with direct reports
• Set the security posture and processes responsible for keeping Docker safe
• Drive enhancements and improvements to security processes
• Participate in code reviews, vulnerability remediation, and larger scale engineering projects to help improve security posture, automation, controls, offensive security/red teaming
• Be a liaison to internal customers and the wider organization, making sure they have the resources and knowledge to maintain our security standards
• Partner with the Governance, Risk and Compliance team to find a best fit in enforcing compliance and audit controls while assuring engineering velocity

Preferred Qualifications

• Familiarity with GCP and Azure
• Experience with SIEM platforms and cloud EDR tools is a plus

Benefits

• Freedom & flexibility; fit your work around your life
• Designated quarterly Whaleness Days
• Home office setup; we want you comfortable while you work
• 16 weeks of paid Parental leave
• Technology stipend equivalent to $100 net/month
• PTO plan that encourages you to take time to do the things you enjoy
• Quarterly, company-wide hackathons
• Training stipend for conferences, courses and classes
• Equity; we are a growing start-up and want all employees to have a share in the success of the company
• Docker Swag
• Medical benefits, retirement and holidays vary by country