Director of Engineering, Security

Director of Engineering, Security – Nexxen
Lead the strategy, delivery, and lifecycle of our security program across applications, cloud infrastructure, identity, data, and SOC operations. Own secure‑by‑design practices, incident readiness, and AI security governance while partnering with executives and cross‑functional leaders to deliver measurable risk reduction and compliance at scale.

Location and schedule: This role will be based in the New York office. Hybrid schedule: work in the office three days a week, remote for the rest.

What You’ll Do

• Define a multi‑year security strategy and roadmap aligned with Nexxen’s business and product direction.
• Chair the Weekly Security Council and represent Security in the Architecture Review Board.
• Lead the AI Security Council (monthly) and AI Ethics Board (quarterly); deliver bi‑monthly executive briefings on risk posture.
• Build a high‑performing, globally distributed security organization and Security Champions program.
• Drive secure SDLC adoption: threat modeling, secure coding standards, SAST/DAST/SCA, and CI/CD gating.
• Prioritize and deliver platform‑level controls across identity, cloud/Kubernetes, data protection, and web/API security.
• Establish SLAs/SLOs for vulnerability remediation, incident response, and control health; measure MTTR and risk reduction.
• Lead build/buy evaluations for security tooling; negotiate, optimize licensing, and manage vendor success.
• Own target‑state security architecture for AWS Organizations (multi‑account), EKS, and data center environments.
• Standardize identity and network segmentation patterns; advance zero‑trust and least‑privilege access.
• Embed policy‑as‑code (OPA/Conftest/Regula) and supply‑chain protections (SBOM, signing, provenance) into pipelines.
• Oversee SOC operations, incident response, and threat detection with measurable readiness and tabletop cadence.
• Partner with Compliance on SOC 2/SOX/GDPR; ensure audit readiness and timely remediation of findings.
• Establish AI governance and risk management for AI‑powered products and internal AI tools; manage AI vendor assessments.
• Hire, develop, and mentor managers and senior engineers across AppSec, Cloud/Infra, Identity/Data, and Compliance/SOC.
• Foster a culture of ownership, enablement, and continuous improvement; scale multi‑squad delivery across time zones.
• Strengthen stakeholder engagement across Engineering, IT, Data, Product, Legal/Compliance, and executive leadership.

What You’ll Bring

• 10+ years in Security Engineering with 5+ years leading managers and multi‑domain portfolios (SOC/IR, AppSec, Cloud/Infra, Identity).
• AWS multi‑account security expertise (Organizations, Control Tower, IAM, SCPs, GuardDuty, Security Hub, Macie, KMS, CloudTrail, Config).
• Proficiency in Kubernetes/EKS, container security, service mesh, ingress, and secrets management (Vault/Secrets Manager).
• Secure SDLC with CI/CD (GitHub/GitLab), Terraform/Terragrunt, OPA/Conftest, and SAST/DAST/SCA (CodeQL, Semgrep, Snyk, ZAP/Burp).
• Web/API protections (AWS WAF/Cloudflare), SBOM/signing (Syft/Grype, Cosign/Sigstore), Dependabot/Renovate, Gitleaks.
• Endpoint/Network security (Palo Alto/Fortinet, Zscaler/ZTNA, CrowdStrike/SentinelOne, Jamf/Intune).
• Identity/SSO with Azure AD/Entra ID, PIM, Conditional Access, SCIM; Okta or AWS IAM Identity Center.
• SIEM/SOAR (Cyrebro; Tines/XSOAR) and threat intel (MISP/OpenCTI); GRC (Drata/Vanta/ServiceNow), Jira/Confluence.
• Proven delivery of large‑scale security transformations and measurable risk reduction; executive presence and board/audit experience.

Soft skills

• Excellent leadership, stakeholder management, and team‑building skills.
• Strong problem‑solving, analytical abilities, and crisp decision‑making.
• Exceptional communication and interpersonal skills.
• Ability to operate under pressure and manage multiple priorities.

Success metrics (KPIs)

• Roadmap attainment, control rollout velocity, and on‑time remediation against SLAs.
• Incident MTTR, alert fidelity, control effectiveness, vulnerability reduction.
• Risk reduction trends, P1/P0 incident frequency, developer productivity via secure enablement.
• Audit readiness, finding closure rates, evidence completeness, AI governance adherence.
• Tooling ROI, vendor consolidation/TCO optimization, budget accuracy.
• Engagement, retention, internal mobility, hiring velocity, cross‑region collaboration effectiveness.

Salary and benefits: Minimum and maximum annual base salary for this role in New York is $180,000 – $219,000. Nexxen offers medical, dental, vision, disability insurance, 401(k), EAP, parental leave, unlimited vacation, and company‑paid holidays.

#J-18808-Ljbffr