Head of Platform & Security

Security Leadership

• Own Opto's enterprise and platform security posture across all applications, services, business tools, and processes
• Maintain Opto's SOC 2 Type II audit reports, ensuring ongoing compliance and readiness for annual assessments
• Own and continuously improve programs for security incident management, vulnerability management, penetration testing, network security, authentication and authorization, system access control, data privacy and governance, encryption and certificate management, and threat detection
• Define and monitor compliance with internal security policies, including MDM, SSO/MFA/RBAC, VPN/zero trust, and data governance
• Partner with Legal to establish a comprehensive security and compliance program, ensuring appropriate processes, documentation, and staffing are in place with no single points of failure
• Promote a culture of security across the organization
• Represent Opto's security program externally to customers, prospects, and investors, including responding to security audits and due diligence questionnaires (DDQs)

Engineering Management

• Lead, mentor, and grow a four-person platform engineering team (infrastructure, security, DevOps, internal IT)
• Maintain team roadmap and backlog in cooperation with engineering leadership and product stakeholders
• Keep stakeholders informed of key milestones, risks, reprioritizations, and escalations
• Provide technical direction on platform architecture decisions, tooling choices, and engineering standards
• Own the internal IT function, ensuring employees get the support they need
• Work with engineering leadership and Recruiting to ensure the team is properly resourced
• Contribute directly to technical projects as bandwidth allows (up to 50% of your time)
• Foster a collegial, trust-filled, and high-accountability team environment

Tech Stack

• React-based Next.js TypeScript applications
• Python REST API services
• Infrastructure as code, orchestrated with Kubernetes on AWS (EKS)
• Automated CI/CD pipelines

Qualifications

Required

• 4-year degree in Computer Science, Engineering, or a related technical field (or equivalent work experience)
• 5+ years of professional experience in Information Security
• 5+ years in software engineering, SRE, DevOps, or a closely related technical discipline
• Hands-on experience with Kubernetes (EKS or equivalent) and infrastructure-as-code tooling
• Demonstrated AWS engineering depth
• Experience managing compliance with SOC 2, ISO 27001, and/or PCI standards
• Experience building and managing engineering or security teams
• Familiarity with the full software development lifecycle (CI/CD, Git, etc.)
• Strong preference for automation and tooling over manual processes
• Comfort with ambiguity and the ability to execute in a fast-paced startup environment
• Excellent written, verbal, and interpersonal communication skills

Preferred

• Background in financial services or fintech
• Prior experience at a startup or high-growth technology company

Compensation and Benefits

• Cash salary range: $250,000-$300,000
• Significant equity
• Health, dental, and vision insurance
• Unlimited PTO
• Retirement savings plan (401k)
• Learning, Fitness and Commuter stipends