Director of Engineering - Head of Security (Remote)
QuoraAbout Quora
Quora’s mission is to grow and share the world’s knowledge. To do so, we have two knowledge sharing products:
- Quora: a global knowledge sharing platform with over 400M monthly unique visitors, bringing people together to share insights on various topics and providing a unique platform to learn and connect with others.
- Poe: a platform providing millions of global users with one place to chat, explore and build with a wide variety of AI language models (bots), including GPT-4, Claude 3, Gemini Pro, DALL-E 3 and more. As AI capabilities rapidly advance, Poe provides a single platform to instantly integrate and utilize these new models.
About The Team And Role
We are seeking a highly experienced Head of Security to lead the development and management of security operations for both Quora and Poe products, and to represent Quora's security interests to customers and regulatory bodies. This role encompasses a variety of responsibilities, including identifying vulnerabilities, implementing best-in-class security practices, and developing long-term security strategies. The ideal candidate will possess a proven track record in team building, engineering, and upholding the highest security standards.
Responsibilities
- Hire, lead, and manage the security team
- Lead the identification and continuous enhancement of security measures across engineering processes, products, and infrastructure
- Develop and maintain security policies, standards, and guidelines that align with organizational objectives and legal requirements, including compliance and audit planning
- Collaborate with various departments such as Legal, IT, Facilities, and Operations to develop and implement secure engineering practices
- Conduct regular security assessments and audits, ensuring compliance with industry standards
- Lead the coordinated response to security incidents, from detection to remediation, root cause analysis, and prevention
- Stay informed about emerging threats and technologies, and advise the leadership team accordingly
- Mentor and guide engineering teams on best practices for secure development, threat modeling, and testing
- Design and execute security training and awareness programs tailored for the engineering department and all employees
Minimum Requirements
- Ability to be available for meetings and impromptu communication during Quora's “coordination hours" (Mon-Fri: 9am-3pm Pacific Time)
- 8+ years of experience in Infrastructure and Information Security
- 3+ years of experience leading a team
- Proven experience in designing and securing solutions in a complex and regulated enterprise environment
- Skilled in defining security requirements and assisting teams in implementing these through collaborative architecture and engineering
- In-depth knowledge of AWS security best practices and security controls, including IAM, CloudTrail, CloudWatch, etc
- Strong understanding of security concepts, such as secure coding, encryption, and authentication
- Knowledge of industry standards like SOC 2, ISO 27001 and GDPR
- Comprehensive understanding of advanced persistent threats, attacker methodologies, attack lifecycle, and the MITRE framework
Preferred Requirements
- Experience in leading a company-wide security program that encompasses security in Infrastructure, IT, Facilities, Operations, and achieving compliance
- Experience in building secure consumer products at internet scale
- Passion for Quora's mission and goals.
Additional Information
We are accepting applications on an ongoing basis.
Quora offers a wide range of benefits including medical/dental/vision coverage, equity refreshers, remote work reimbursement, paid time off, employee assistance programs, and more. Benefits are country-specific and may vary. For more information on benefits, visit this link: https://www.careers.quora.com/benefits
Benefits Extracted with AI
- Medical/Dental/Vision coverage
- Equity refreshers
- Remote work reimbursement
- Paid time off
- Employee assistance programs
Similar jobs
Last update: 23 minutes ago
Staff/Lead Application Security Engineer
Join Agoda as a Staff/Lead Application Security Engineer in a dynamic DevSecOps environment.
Staff/Lead Application Security Engineer
Join Agoda as a Staff/Lead Application Security Engineer in Bangkok. Enhance security in a dynamic DevSecOps environment.
Software Engineer 2 - Platform Security
Join Intuit as a Software Engineer 2 in Platform Security, focusing on cloud infrastructure and security best practices.
Staff Full Stack Software Engineer - Poe Creators
Remote Staff Full Stack Software Engineer role at Quora, focusing on AI and web technologies like GraphQL, Python, and TypeScript.
Staff Full Stack Software Engineer - Poe Creators
Join Quora as a Staff Full Stack Software Engineer to build AI-driven features for Poe, working remotely with a focus on GraphQL, Python, and TypeScript.
Head of Data Science
Lead our Data Science team in Ireland, driving AI-powered compliance solutions. Remote work, diverse workplace, and growth opportunities.
Principal Software Engineer - Cloud Security
Join Microsoft as a Principal Software Engineer focusing on cloud security solutions. Remote work available.
Software Engineer - Application Platform
Join Abnormal Security as a Software Engineer to build scalable platforms using Python, Go, and more. Remote role.
Head of Frontend Engineering
Lead Qonto's Frontend Engineering teams to develop scalable web solutions in a hybrid work environment.
Senior Backend Engineer - Cloud Native Security
Join SentinelOne as a Senior Backend Engineer focusing on cloud-native security solutions. Work remotely in Slovakia.
Senior/Principal Software Engineer
Join Groq as a Senior/Principal Software Engineer to design and develop scalable software for AI inference technology.
Staff Engineer - Python, Cloud, Distributed Systems
Join Keelvar as a Staff Engineer to lead design and architecture in a remote role, focusing on Python, cloud, and distributed systems.
Hacker Program Operations Specialist
Join Immunefi as a Hacker Program Operations Specialist to lead and manage Web3 security programs.
Senior Backend Engineer - Cloud Native Security
Join SentinelOne as a Senior Backend Engineer to design and implement cloud-native security solutions.
Senior Offensive Security Engineer
Join Klarna as a Senior Offensive Security Engineer in Berlin to safeguard digital infrastructure and customer data.
Senior Backend Engineer, Moderation
Join Reddit as a Senior Backend Engineer in Moderation, working remotely in the U.S. with Python, Rust, and GraphQL.
Cloud Engineer
Join SQUER as a Cloud Engineer in Vienna. Work with AWS, Azure, or GCP, automate with Terraform, and enjoy hybrid work and great benefits.
Senior Software Engineer, Reporting Platform
Join Square as a Senior Software Engineer to lead development on the Reporting Platform, focusing on Java, Kotlin, and AWS.
Lead Software Engineer with AWS and REST Expertise
Join Wellhub as a Lead Software Engineer to design scalable web applications using AWS and REST in a remote role.
Senior Security Engineer - Application Security
Join Swile as a Senior Security Engineer focusing on application security, threat modeling, and vulnerability management.
Senior Software QA Engineer
Join Storyful as a Senior Software QA Engineer in Dublin. Work on test automation, API testing, and agile development.
Senior Cloud Engineer
Join as a Senior Cloud Engineer to architect and deploy cloud solutions using Azure, AWS, and GCP. Lead innovation in cloud technology.
Senior Application Security Engineer
Join Gen as a Senior Application Security Engineer in Prague. Lead security initiatives, conduct reviews, and mentor teams in a dynamic environment.
Lead DevOps Engineer – Data Platform
Lead DevOps Engineer for Data Platform in Bangkok. Enhance scalability and efficiency using Kubernetes, Spark, and more.