Jobs
CircleCI logoCircleCI

Director of Security Engineering

Remote (United States or Candada), Boston, San Francisco, DenverUnited StatesNorth AmericaSan FranciscoCaliforniaUnited StatesNorth AmericaApril 10, 2025

CircleCI is hiring a Director of Security Engineering to lead and guide our growing security function within the company.

Our Philosophy

We strive to provide an outstanding security posture for our infrastructure and ultimately, our customers. We believe excellent security and compliance is a competitive differentiator. Thus we are generally unwilling to put up gates or slow down developer flow. Constraints drive creativity. If there is hard work required to make the right things the easy things, we're wiling to seek it out.

Areas of Responsibility

The Director of Security cover areas including application security, platform security, threat detection (including combating crypto-mining and other platform abuse), and security infrastructure.

These are development teams who serve our wider engineering organization.

Expectations

You'll own security for engineering, and the company. This includes heavy collaboration with our go to market teams and sales enablement in addition to engineering practices that contain security response, incident handling, compliance posture, and headcount planning.

You'll improve upon metrics and other measures to ensure we're getting the outcomes and returns for our security investments of our platform.

Responsibilities:

  • Define operating metrics and team goals and lead the organization to meet them.
  • Enable engineering teams to deliver projects and roll out secure, and compliant features at scale
  • Craft security strategies and roadmap for the security engineering group to help scale the infrastructure and meet business objectives.
  • Provide guidance and mentorship to our engineering teams
  • Continuously integrate improved security practices into our software developer processes.
  • Support teams within the org that coordinate with internal and external auditors regarding security controls (SOX, SOC2, FedRAMP, etc.) and privacy frameworks (CCPA, GDPR, etc.) and work to resolve identified gaps.

You're the right person for this role if you are:

  • Passionate about building systems to make the right things easy.
  • Have experience with a globally distributed team.
  • Are comfortable working outbound with go-to-market teams and directly with customers.
  • An experienced manager with the ability to mentor and develop individual contributors and managers.
  • A data-driven problem solver who resists inertia by constantly looking to optimize and improve existing processes
  • Someone who can communicate strategy, direction, and plans via written documentation, presentations and influence with teams, peers, and leaders.

Requirements:

  • 7+ years of security engineering experience with an emphasis on secure development, infrastructure, and compliance requirements.
  • 5+ years in security (or similar) management experience with proven track record to attract, develop and retain talent, specifically for distributed teams.
  • Experienced in engineering to deliver product via agile methodologies.
  • Ability to empower people, instill accountability, and achieve results.
  • Strong verbal and written communication skills, organizational proficiency, and project/program management skills.

About CircleCI

CircleCI is the world’s largest shared continuous integration and continuous delivery (CI/CD) platform, and the central hub where code moves from idea to delivery. As one of the most-used DevOps tools that processes more than 1 million builds a day, CircleCI has unique access to data on how engineering teams work, and how their code runs. Companies like Spotify, Coinbase, Stitch Fix, and BuzzFeed use us to improve engineering team productivity, release better products, and get to market faster.

CircleCI is proud to be an Equal Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.

Cyber Security Jobs by Category

Agile jobsApplication Security jobsCCPA jobsCircleci jobsCompliance jobsCrypto jobsDevops jobsFedramp jobsGDPR jobsGolang jobsPrivacy jobsSOC2 jobsStrategy jobsThreat Detection jobs

Cyber Security Jobs by Location

Cyber Security Jobs in United StatesCyber Security Jobs in North AmericaCyber Security Jobs in San FranciscoCyber Security Jobs in CaliforniaCyber Security Jobs in United StatesCyber Security Jobs in North America

Cyber Security Salaries

Agile SalaryApplication Security SalaryCCPA SalaryCircleci SalaryCompliance SalaryCrypto SalaryDevops SalaryFedramp SalaryGDPR SalaryGolang SalaryPrivacy SalarySOC2 SalaryStrategy SalaryThreat Detection SalaryCyber Security Salary in United StatesCyber Security Salary in North AmericaCyber Security Salary in San FranciscoCyber Security Salary in CaliforniaCyber Security Salary in United StatesCyber Security Salary in North America