Lightspark is hiring a
Head of Security

Summary

Lightspark is seeking a highly experienced Head of Security to lead the development and ongoing management of security functions. The role involves identifying vulnerabilities, implementing best-in-class security practices, developing policies, collaborating with various departments, conducting regular security assessments, designing and executing security training programs, leading incident response, keeping abreast of emerging threats, mentoring engineering teams, managing the security team, interacting with customers' security teams, and acting as an individual contributor when needed. The ideal candidate should have at least 8 years of experience in engineering security, 3 years of team leadership or management experience, prior experience with finance, blockchain, or crypto technology, strong familiarity with security concepts, proficiency in one or more programming languages, knowledge of industry standards like ISO 27001, NIST, or OWASP, and preferred certifications such as CISSP, CEH, or equivalent.

Requirements

• A minimum of 8 years of experience in engineering security
• A minimum of 3 years of experience leading or managing a team
• Prior experience with finance, blockchain, or crypto technology is required
• Strong familiarity with security concepts, including secure coding, encryption, and authentication
• Proficient in one or more programming languages (Python, Java, C/C++, etc.)
• Knowledge of industry standards like ISO 27001, NIST, or OWASP

Responsibilities

• Lead the identification and continuous improvement of security measures across engineering processes, products, and infrastructure
• Develop and maintain security policies, standards, and guidelines aligned with organizational objectives and legal requirements, including compliance and audit planning
• Collaborate with various departments to develop and implement secure engineering practices
• Conduct regular security assessments and audits, ensuring compliance with industry standards
• Design and execute security training and awareness programs customized for the engineering department
• Lead the coordinated response to security incidents from detection to remediation, root cause analysis, and prevention
• Keep abreast of emerging threats and technologies, and advise the leadership team accordingly
• Mentor and guide engineering teams on best practices for secure development, threat modeling, and testing
• Hire, train, lead, and manage the security team
• Interact with our customers’ security teams to support them and our business partners into evaluating, integrating, and using our products

Preferred Qualifications

• A degree in Computer Science is ideal but not required, we value talent from diverse backgrounds
• Preferred certifications: CISSP, CEH, or equivalent

Benefits

Not specified