Skip to content
MomentMomentNew York, NY

Head of Security

Own the end-to-end security program for a fintech infrastructure company, driving strategy, compliance (SOC 2), incident response, and client-facing security reviews for institutional trading systems.

275k – 325k/yr
On-siteSecurity Engineering

About the role

What You'll Do

  • DRI the security program including application security, cloud infrastructure security, identity and access management, vulnerability management, detection, and incident response. Set standards and run operations.
  • Scale security programs and face off with top-tier RIAs, broker-dealers, and global bank security teams.
  • Own compliance and regulatory posture including SOC 2 and regulatory baselines for broker-dealers and institutional financial infrastructure.
  • Run audits, manage the Trust Center, and partner with Legal and Compliance.
  • Lead incident response: run the room, make calls, communicate to clients, and write postmortems.

Requirements

  • Deeply technical: read code, reason about modern cloud architectures (AWS, Kubernetes), threat-model real systems, and ship security tooling.
  • Experience running a security program at a fintech, trading firm, or financial infrastructure company with real stakes and high regulatory bar.
  • Comfortable presenting to senior client security teams and clearing enterprise security reviews.
  • Builder mindset for a 0-to-1 leadership role.

Nice-to-Haves

  • Prior experience at a broker-dealer, market maker, fund administrator, or core fintech infrastructure provider.
  • SOC 2 Type 2 audit experience as lead or co-lead.
  • Background in security engineering: CSPM, IAM, AppSec, detection engineering, or incident response with shipped work.

Compensation & Benefits

  • Base salary: $275K–$325K + initial equity grant + annual performance-based equity bonuses.
  • Free lunch and dinner.
  • Health, dental, and vision coverage.
  • $150 monthly gym stipend.

Skills

AWSKubernetesApplication SecurityCloud SecurityIdentity And Access ManagementVulnerability ManagementDetection EngineeringIncident ResponseSOC 2Threat Modeling
Harvey

Head of Security Engineering

HarveySan Francisco, CA +1

Lead and scale the security engineering organization, owning IAM strategy, security tooling, and foundational security platforms that enable rapid, secure product development.

285k – 350k/yr
Hybrid10+ YOESecurity Engineering
Scale AI

Head of Global Assurance

Scale AIWashington, DC

Lead and scale global assurance programs (FedRAMP, SOC 2, ISO 27001) across public sector and commercial units while managing a distributed technical team of compliance experts.

287k – 359k/yr
On-site10+ YOESecurity Engineering
Trail of Bits

Engineering Director, Application Security

Trail of BitsUnited States

Leads Application Security practice performing code audits, vulnerability research, and secure design reviews. Hands-on leader managing team, P&L, client relationships; requires 10+ years security experience and proficiency in multiple languages.

250k – 300k/yr
Remote10+ YOESecurity Engineering
Instabase

Director, Security & Compliance

InstabaseSan Francisco, CA

Leads security, compliance (GRC), and IT operations at a SaaS company, driving roadmap, audits (SOC2, HIPAA, ISO 27001, GDPR, FedRAMP), policies, and cross-functional programs. Requires extensive compliance experience in cloud/SaaS environments.

250k – 300k/yr
HybridSecurity Engineering
DuckDuckGo

Privacy Engineering Director

DuckDuckGoUnited States

Lead privacy engineering initiatives across private browsing, search, and agentic products. Own complex privacy projects from definition to delivery, evolve review processes, and grow privacy engineering talent.

244k – 244k/yr
Remote10+ YOESecurity Engineering