×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Director, Security

Job in Columbia, Howard County, Maryland, 21046, USA
Listing for: Nexxen
Full Time position
Listed on 2026-06-26
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 180000 - 219000 USD Yearly USD 180000.00 219000.00 YEAR
Job Description & How to Apply Below

Director of Engineering, Security

This role will be based in the New York office. Our team follows a hybrid schedule, working in the office three days a week and remotely for the rest.

What You’ll Do

Each day can be different here at Nexxen, but some of the things you can expect to be doing daily are:

  • Strategy and leadership
  • Define a multi-year security strategy and roadmap aligned to Nexxen’s business and product direction.
  • Chair the Weekly Security Council; represent Security in the Architecture Review Board.
  • Lead AI Security Council (monthly) and AI Ethics Board (quarterly); deliver bi-monthly executive briefings on risk posture.
  • Build a high-performing, globally distributed security organization and Security Champions program.
  • Product, delivery, and value realization
  • Drive secure SDLC adoption: threat modeling, secure coding standards, SAST/DAST/SCA, and CI/CD gating.
  • Prioritize and deliver platform-level controls across identity, cloud/Kubernetes, data protection, and web/API security.
  • Establish SLAs/SLOs for vulnerability remediation, incident response, and control health; measure MTTR and risk reduction.
  • Lead build/buy evaluations for security tooling; negotiate, optimize licensing, and manage vendor success.
  • Architecture and integrations
  • Own target-state security architecture for AWS Organizations (multi-account), EKS, and data center environments.
  • Standardize identity and network segmentation patterns; advance zero-trust and least-privilege access.
  • Embed policy-as-code (OPA/Conftest/Regula) and supply-chain protections (SBOM, signing, provenance) into pipelines.
  • Security, risk, and compliance
  • Oversee SOC operations, incident response, and threat detection with measurable readiness and tabletop cadence.
  • Partner with Compliance on SOC 2/SOX/GDPR; ensure audit readiness and timely remediation of findings.
  • Establish AI governance and risk management for AI-powered products and internal AI tools; manage AI vendor assessments.
  • People leadership
  • Hire, develop, and mentor managers and senior engineers across App Sec, Cloud/Infra, Identity/Data, and Compliance/SOC.
  • Foster a culture of ownership, enablement, and continuous improvement; scale multi-squad delivery across time zones.
  • Strengthen stakeholder engagement across Engineering, IT, Data, Product, Legal/Compliance, and executive leadership.
What You’ll Bring
  • 10+ years in Security Engineering with 5+ years leading managers and multi-domain portfolios (SOC/IR, App Sec, Cloud/Infra, Identity).
  • Hands-on leadership with:
  • AWS multi-account security (Organizations, Control Tower, IAM, SCPs, Guard Duty, Security Hub, Macie, KMS, Cloud Trail, Config).
  • Kubernetes/EKS, container security, service mesh, ingress, and secrets management (Vault/Secrets Manager).
  • Secure SDLC with CI/CD (Git Hub/Git Lab), Terraform/Terragrunt, OPA/Conftest, SAST/DAST/SCA (CodeQL, Semgrep, Snyk, ZAP/Burp).
  • Web/API protections (AWS WAF/Cloudflare), SBOM/signing (Syft/Grype, Cosign/Sigstore), Dependabot/Renovate, Gitleaks.
  • Endpoint/Network security (Palo Alto/Fortinet, Zscaler/ZTNA, Crowd Strike/Sentinel One, Jamf/Intune).
  • Identity/SSO with Azure AD/Entra , PIM, Conditional Access, SCIM;
    Okta or AWS IAM Identity Center.
  • SIEM/SOAR (Cyrebro; Tines/XSOAR) and threat intel (MISP/OpenCTI); GRC (Drata/Vanta/Service Now), Jira/Confluence.
  • Proven delivery of large-scale security transformations and measurable risk reduction; executive presence and board/audit experience.
Soft skills
  • Excellent leadership, stakeholder management, and team-building skills.
  • Strong problem-solving, analytical abilities, and crisp decision-making.
  • Exceptional communication and interpersonal skills.
  • Ability to operate under pressure and manage multiple priorities.
Success metrics (KPIs)
  • Delivery:
    Roadmap attainment, control rollout velocity, and on-time remediation against SLAs.
  • Reliability/quality:
    Incident MTTR, alert fidelity, control effectiveness, vulnerability reduction.
  • Business impact:
    Risk reduction trends, P1/P0 incident frequency, and developer productivity via secure enablement.
  • Compliance:
    Audit readiness, finding closure rates, evidence completeness, and AI governance adherence.
  • Financials:
    Tooling ROI, vendor consolidation/TCO…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search