The Director of Security Engineering will lead and scale ConductorOne's security engineering function, owning the security posture of the platform and infrastructure. This is a high-impact leadership role at a company where security is the core product, requiring deep technical expertise and the ability to drive security strategy across engineering, product, and customer-facing teams.
What You'll Do
- Build, mentor, and develop a team of security engineers focused on product security, infrastructure security, and security operations
- Foster a culture of ownership, continuous improvement, and collaboration
- Set clear goals and create professional development paths for your team
- Develop and implement a comprehensive security engineering roadmap aligned with company objectives and customer commitments
- Own ConductorOne's security architecture across cloud infrastructure, applications, and data systems
- Drive security reviews, threat modeling, and secure design practices across the engineering organization
- Ensure the security and integrity of our AI-native identity platform, including protection of customer data and identities
- Lead vulnerability management, penetration testing, and incident response capabilities
- Partner with engineering teams to integrate security into CI/CD pipelines and the software development lifecycle
- Serve as the technical lead for security audits, customer security assessments, and regulatory inquiries
- Collaborate with Product and Engineering leadership to balance security requirements with velocity
- Support Sales and Customer Success with security expertise during customer engagements
- Report on security posture, risks, and initiatives to executive leadership
What We're Looking For
- 10+ years in security engineering, application security, or infrastructure security, with 5+ years leading security teams
- Deep experience securing SaaS platforms, ideally in the identity, security, or enterprise software space
- A builder's mindset: you're excited to create security programs and tooling from the ground up, not just maintain them
- Strong technical foundation in cloud security (AWS), container security, and modern application architectures
- Hands-on experience with security tools and practices: SAST/DAST, vulnerability management, SIEM, incident response, and penetration testing
- Track record of building and scaling high-performing security teams
- Experience with compliance frameworks (SOC 2, ISO 27001, FedRAMP) and customer security assessments
- Excellent communication skills—able to translate security concepts for technical and non-technical audiences
Nice to Have
- Experience at an identity, IAM, or security vendor
- Background in securing AI/ML systems or agentic architectures
- Open source contributions or community involvement in security
Technical Stack
- AWS
- container security
- SAST
- DAST
- vulnerability management
- SIEM
- penetration testing
- CI/CD pipelines
- AI/ML systems
- agentic architectures
Team & Environment
- Lead a high-performing team to be built and scaled
- Team structure: security engineers focused on product security, infrastructure security, and security operations
- Direct reporting to executive leadership
Benefits & Compensation
- Mission that matters: Identity is the #1 enterprise attack surface. We're building the platform to solve it.
- Ownership and impact: Share in ConductorOne's success as part of a team that believes in winning together.
- Flexibility: Work where you're most productive—Portland, San Francisco, or remote.
- Comprehensive benefits: Flexible time off, top-tier healthcare for you and your family, and competitive compensation.
- Work-life balance: We work hard, but we know you have a life outside of work. We want ConductorOne to be an important part of your life—not your whole life.
- Salary: competitive compensation
- Equity: Share in ConductorOne's success
Work Mode
- Hybrid work model
- Locations: Portland, San Francisco, remote
- Flexibility: Work where you're most productive
ConductorOne, Inc. is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status or any other category protected by law.
