Application Security Director
Fireblocks is an enterprise-grade platform delivering a secure infrastructure for moving, storing, and issuing digital assets. It enables exchanges, custodians, banks, trading desks, and hedge funds to securely scale digital asset operations through its patent-pending SGX & MPC technology.
About Fireblocks
Fireblocks is an enterprise-grade platform that provides a secure infrastructure for moving, storing, and issuing digital assets. It enables financial institutions like exchanges, custodians, banks, trading desks, and hedge funds to securely scale their digital asset operations. The company was founded by Michael Shaulov, Idan Ofrat, and Pavel Berengoltz after they investigated a major cyber breach. Fireblocks utilizes breakthrough Multi-Party Computation (MPC) and patent-pending chip isolation technology to secure private keys and API credentials. The platform supports various use cases including treasury management, wallet as a service, tokenization, payments, and DeFi, and provides a complete development platform with APIs, SDKs, and tutorials for building on the blockchain.
Skills
About the Role
You will spearhead efforts to fortify and enhance the security posture of products and runtime environments, playing a critical leadership role in overseeing the design, implementation, and maintenance of security controls for complex product applications, platform, development, and cloud infrastructure. You will lead a team of security experts and collaborate closely with engineering, product, and other business units to ensure the security and integrity of applications, platforms, cloud infrastructure, and code stack against current and evolving threats. Your leadership will be instrumental in embedding security best practices throughout the development and operations pipeline, ensuring a secure and scalable product environment. You will also drive the strategy, development, and implementation of a comprehensive application security program across cloud-based applications. You will report to the VP Security Engineering.
Requirements
- At least 7+ years of experience in security architecture, software development, cloud security, or a related field
- At least 5 years in a leadership role
- Engineering background - MUST
- Proven leadership skills with a track record of leading high-performing security teams in a fast-paced, technology-driven environment
- Excellent communication and interpersonal skills, with the ability to articulate complex security concepts to technical and non-technical audiences
- Professional security certifications (e.g., CISSP, CISM, CCSP, OSCP) are highly desirable
- Strong technical background in cloud services, DevOps, orchestration tools (e.g., Kubernetes), and cloud-native security tools (CSPM, CWPP)
- Excellent communication and stakeholder management skills, with the ability to influence security initiatives across cross-functional teams
Responsibilities
- Develop and lead the strategic direction for the Application and Cloud Security teams
- Lead risk assessments, threat modeling, and secure design reviews of cloud platforms to proactively identify vulnerabilities and ensure compliance with security standards
- Oversee the design, implementation, and maintenance of security controls across multi-cloud environments (AWS, GCP, Azure) to protect infrastructure and applications
- Collaborate with cross-functional teams, including engineering, product management, and customer support, to embed security into product development and cloud deployments
- Drive the adoption of cutting-edge infrastructure cloud security technologies, including data security, encryption, identity and access management (IAM), and network security
- Use tools for advanced security analysis, triage of vulnerabilities and other security operations
