This job posting has expired
Expired on April 1, 2026
Head of Security
Job Description
LocalStack is a fast-growing Series A startup building technology to revolutionize cloud development. We are seeking a Head of Security with 7+ years of experience in security engineering or compliance. You will ensure a robust security posture across our product, lead incident monitoring, vulnerability management, and audit procedures. You will own documentation of security controls and collaborate with engineering teams on secure configurations. The role is fully remote and offers a competitive salary and annual retreats.
Responsibilities
- Ensure robust security posture of our product components
- Lead initiatives for incident monitoring, intrusion detection, and vulnerability management
- Define and implement regular security auditing procedures
- Deliver a sustainable process for vendor risk assessments
- Ensure secure configurations and permission models
- Identify gaps between claimed and actual compliance
- Own documentation of security controls, configurations, and policies
- Engage with internal stakeholders to evaluate security threats
- Generate and distribute internal audit and compliance reports
Qualifications
- 7+ years in a security engineering or security compliance role
- Experience leading vendor risk assessments and building compliance frameworks
- Strong background in API design and build
- Strong background in DevSecOps, incident response, and risk-driven security leadership
- Expert knowledge of threat modelling and vulnerability management
- Practical experience with cloud security (AWS preferred)
- Good knowledge of common standards (SOC 2, ISO 27001, GDPR)
- Prior engineering experience strongly preferred