cover image
Bugcrowd

Bugcrowd

www.bugcrowd.com

1 Job

3,402 Employees

About the Company

We are a crowdsourced security company that safeguards organizations' assets from sophisticated threat actors before they can strike--by uniting our customers with trusted hackers via our AI-powered platform to take back control and stay ahead of attackers. Bugcrowd is backed by Blackbird Ventures, Costanoa Ventures, Industry Ventures, Paladin Capital Group, Rally Ventures, Salesforce Ventures and Triangle Peak Partners.

Listed Jobs

Company background Company brand
Company Name
Bugcrowd
Job Title
Sr. Director, Cybersecurity
Job Description
**Job Title:** Sr. Director, Cybersecurity **Role Summary** Lead Bugcrowd's global cybersecurity strategy with technical expertise in cloud-native security, compliance frameworks, and hands-on security operations. Oversees risk mitigation, incident response, and security architecture to protect enterprise systems and ensure alignment with SOC-2, ISO27001, and NIST 800-53v4. **Expactations** Define and execute a proactive cybersecurity strategy; ensure compliance with regulatory standards; lead technical evaluations of vendor tools and cloud infrastructure; build and mentor a high-performing security team. **Key Responsibilities** - Develop and implement cybersecurity frameworks to strengthen risk posture and compliance (SOC-2, ISO27001, ISO27018, NIST). - Manage bug bounty programs, vulnerability assessments, and penetration testing for cloud infrastructure (AWS, GitHub). - Oversee incident response (24/7 on-call), root cause analysis, and mitigation of breaches. - Architect security controls for CI/CD pipelines and production systems. - Automate security tasks (code reviews, infrastructure hardening) using Python, Golang, or scripting languages. - Coordinate threat intelligence, red team exercises, and malware analysis. - Train teams on security awareness and lead cross-functional compliance audits. **Required Skills** - Expertise in cloud-native architecture (AWS), cloud security, and application security. - Hands-on experience with SIEM tools, vulnerability scanners (Qualys, Nessus), and CI/CD pipeline security. - Strong incident response, threat modeling, and configuration management capabilities. - Proficiency in Python, Golang, or Ruby for automation. - Leadership in managing technical teams and cross-functional collaboration. **Required Education & Certifications** - Bachelor’s degree in computer science, cybersecurity, or related field. - Advanced certifications: CISSP, CISA, CEH, or ISO27001 LA.
London, United kingdom
Remote
02-10-2025