Head of Security
What's next in music happens on SoundCloud first. As the world's largest open audio platform, SoundCloud is powered by a connected community of creators, listeners and curators who share, discover and influence what's new, now and next in music and audio.
We care about the safety of our millions of users just as much as the security of our systems. We are looking for an enthusiastic leader to join our growing Security, User Auth, and Anti-Abuse engineering teams, who can demonstrate their strong tactical decision-making skills in combination with data to establish objectives, and drive forward our strategy.
The Security team at SoundCloud is responsible for auditing and threat modeling feature designs, code, and systems and network architecture, and supporting other engineering teams with their expert knowledge, experience, and guidance - not only around secure engineering, but also risk management, data protection, and compliance. We develop and run critical backend services for shared concerns such as access management, secrets management, static code analysis, continuous security testing, monitoring, and intrusion detection, next to more product-oriented services targeting spam and abuse mitigation. The User Auth team is responsible for ensuring that a user can be correctly and securely authenticated across our services, without the requirement of specialist knowledge in teams developing services that rely on user sessions; and that authorization for access to sensitive user data, restricted features and media, and resources subject to user-specific limits are enforced across our services. The responsibility of the Anti-Abuse team is to identify and combat spam and abuse, and programmatically analyze content and detect attempts to manipulate our platform.
Leading this part of the organization requires an experienced, forward-thinking, and most above all, empathetic strategist who is able to share their excitement for all aspects of security.
As the Head of Security at SoundCloud, you will be working with a very talented and caring group of engineers and stakeholders, and reporting directly into our VP of Infrastructure and Core Engineering. You bring at least 5 years of experience in managing security teams in a related industry. You have gained experience with due diligence and compliance work, including PCI-DSS, financial reporting audits, SOX, or implementation of the GDPR. Reviewing security whitepapers comes easily to you, as you know how to translate legal challenges into technological solutions. You have a deep hands-on understanding of security at scale, as well as the ability to drive big picture, long-term projects that make an impact. Given your previous experience as a strong practitioner in secure engineering, you have the knowledge and skills to guide the Security teams and aid decision making. You keep calm in the case of incident response, and know how to rally a team around a common cause. You’ll be responsible for setting and communicating the vision and strategy for the Security teams, and the wider security and data protection direction of the company; as such, you have the ability to clearly communicate highly complex and technical concepts and risks to any audience.
You believe that humans are as important as technology when it comes to security, and that the soft skills of you and your teams are the basis of a successful security program. You strongly believe that the function of a security team is to enable, not to block; and that security scales by building a culture that is inclusive and has space for everyone to contribute. You are a great mentor, help teams understand the value of their work, and enable them to move swiftly and with confidence.
If you have not yet had the chance to gain a solid grasp of spam detection and mitigation techniques, it is a subject that excites you and that you want to learn more about. Collaboration with product managers and tech leads, taking accountability to plan, direct, and ensure the delivery of our products and features, as well as balancing them against technical debt and research initiatives is important to you. You love to support others to do the best work of their lives, you are passionate about adversarial thinking, fighting abuse, and making the world a safer place. In turn, you will have the rare opportunity to gain experience in serving 175 million active users on our platform, and keeping them and their data safe.
If this sounds like you, we’d love to hear from you!
Read more about SoundCloud Engineering here.
Diversity at SoundCloud:
SoundCloud is for everyone. Diversity and open expression are fundamental to our organization; they help us build a social platform and global community where anyone can create, discover, and share sounds. We acknowledge the challenges in our industry, and strive to develop an inclusive culture where everyone can contribute.
Back to top