Director of Engineering, Security jobs in United States
cer-icon
Apply on Employer Site
company-logo

Nexxen · 13 hours ago

Director of Engineering, Security

positionBaltimore, MD
timeFull-time
remoteHybrid
seniorityDirector/Executive
money$180K/yr - $219K/yr
date10+ years exp

Nexxen is a company that empowers advertisers, agencies, publishers, and broadcasters through a flexible and unified technology stack. They are seeking a Director of Engineering, Security to lead the strategy, delivery, and lifecycle of their security program across various domains, ensuring measurable risk reduction and compliance at scale.

AdvertisingAdvertising PlatformsMarketing
check
H1B Sponsor Likelynote

Responsibilities

Define a multi-year security strategy and roadmap aligned to Nexxen’s business and product direction
Chair the Weekly Security Council; represent Security in the Architecture Review Board
Lead AI Security Council (monthly) and AI Ethics Board (quarterly); deliver bi-monthly executive briefings on risk posture
Build a high-performing, globally distributed security organization and Security Champions program
Drive secure SDLC adoption: threat modeling, secure coding standards, SAST/DAST/SCA, and CI/CD gating
Prioritize and deliver platform-level controls across identity, cloud/Kubernetes, data protection, and web/API security
Establish SLAs/SLOs for vulnerability remediation, incident response, and control health; measure MTTR and risk reduction
Lead build/buy evaluations for security tooling; negotiate, optimize licensing, and manage vendor success
Own target-state security architecture for AWS Organizations (multi-account), EKS, and data center environments
Standardize identity and network segmentation patterns; advance zero-trust and least-privilege access
Embed policy-as-code (OPA/Conftest/Regula) and supply-chain protections (SBOM, signing, provenance) into pipelines
Oversee SOC operations, incident response, and threat detection with measurable readiness and tabletop cadence
Partner with Compliance on SOC 2/SOX/GDPR; ensure audit readiness and timely remediation of findings
Establish AI governance and risk management for AI-powered products and internal AI tools; manage AI vendor assessments
Hire, develop, and mentor managers and senior engineers across AppSec, Cloud/Infra, Identity/Data, and Compliance/SOC
Foster a culture of ownership, enablement, and continuous improvement; scale multi-squad delivery across time zones
Strengthen stakeholder engagement across Engineering, IT, Data, Product, Legal/Compliance, and executive leadership

Qualification

Security EngineeringAWS SecurityKubernetes SecuritySecure SDLCIdentity SecurityCompliance/SOCIncident ResponseThreat DetectionStakeholder ManagementTeam BuildingAnalytical AbilitiesLeadershipProblem SolvingCommunication SkillsInterpersonal Skills

Required

10+ years in Security Engineering with 5+ years leading managers and multi-domain portfolios (SOC/IR, AppSec, Cloud/Infra, Identity)
Hands-on leadership with AWS multi-account security (Organizations, Control Tower, IAM, SCPs, GuardDuty, Security Hub, Macie, KMS, CloudTrail, Config)
Kubernetes/EKS, container security, service mesh, ingress, and secrets management (Vault/Secrets Manager)
Secure SDLC with CI/CD (GitHub/GitLab), Terraform/Terragrunt, OPA/Conftest, SAST/DAST/SCA (CodeQL, Semgrep, Snyk, ZAP/Burp)
Web/API protections (AWS WAF/Cloudflare), SBOM/signing (Syft/Grype, Cosign/Sigstore), Dependabot/Renovate, Gitleaks
Endpoint/Network security (Palo Alto/Fortinet, Zscaler/ZTNA, CrowdStrike/SentinelOne, Jamf/Intune)
Identity/SSO with Azure AD/Entra ID, PIM, Conditional Access, SCIM; Okta or AWS IAM Identity Center
SIEM/SOAR (Cyrebro; Tines/XSOAR) and threat intel (MISP/OpenCTI); GRC (Drata/Vanta/ServiceNow), Jira/Confluence
Proven delivery of large-scale security transformations and measurable risk reduction; executive presence and board/audit experience
Excellent leadership, stakeholder management, and team-building skills
Strong problem-solving, analytical abilities, and crisp decision-making
Exceptional communication and interpersonal skills
Ability to operate under pressure and manage multiple priorities
Delivery: Roadmap attainment, control rollout velocity, and on-time remediation against SLAs
Reliability/quality: Incident MTTR, alert fidelity, control effectiveness, vulnerability reduction
Business impact: Risk reduction trends, P1/P0 incident frequency, and developer productivity via secure enablement
Compliance: Audit readiness, finding closure rates, evidence completeness, and AI governance adherence
Financials: Tooling ROI, vendor consolidation/TCO optimization, budget accuracy
Team: Engagement, retention, internal mobility, hiring velocity, cross-region collaboration effectiveness

Benefits

Medical
Dental
Vision
Disability insurance
401(k)
EAP
Parental leave
Unlimited vacation
Company-paid holidays

Company

Nexxen

twittertwittertwitter
company-logo
Nexxen is an advertising technology company that provides a unified platform integrating demand-side and supply-side capabilities.
dateFounded in 2007
location
New York, New York, USA
people-size501-1000 employees
web-link
https://nexxen.com

H1B Sponsorship

Nexxen has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (5)
2024 (18)
2023 (6)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Eric Solomon
SVP, Product - Data
linkedin
I
Irina Katsnelson
Senior Vice President, Sales
linkedin

Recent News

thefly.com
Nexxen launches new predictions report on 2026 FIFA World Cup
2026-01-08
GlobeNewswire
Nexxen Announces Board Transitions Following 2025 Annual General Meeting
2026-01-07
GlobeNewswire
Nexxen’s 2026 World Cup Forecast Helps Advertisers Plan for Fragmented TV Landscape
2026-01-07
Company data provided by crunchbase