Senior IT Security Engineer at NEAR Foundation leading information security program and compliance initiatives. Partnering with IT teams for secure architectural design and risk management.
Responsibilities
Lead the information security program across NEAR Foundation
Drive SOC II Type 2 and ISO 27001 readiness and ongoing compliance at NEAR AI
Support the needs and operation of the NEAR Security Committee (NSC)
Run logging, monitoring, and alerting; lead investigation and response for security incidents
Run vulnerability management, third-party risk reviews, and security awareness across the organization
Own the security architecture and hardening of our identity, access, and endpoint stack
Engineer security and compliance automation across our SaaS estate
Be the senior technical escalation point for complex security issues
Lead security tooling rollouts and security vendor selection
Help maintain a secure cloud footprint (AWS / GCP) and maintain the security policy library
Requirements
7+ years in information security with strong IT engineering depth
Demonstrated ownership of SOC II Type 2 and ideally ISO 27001 readiness and audit cycles
Deep hands-on experience across IAM, endpoint, and at least one cloud (AWS or GCP)
Comfortable scripting (Python, Go, or Bash) and automating IT and security workflows
Practical experience with SSO/IdP platforms (Okta, Google Workspace, Entra), MDM/EDR tooling, and modern logging/SIEM stacks
Strong written communication — clear policy, clean post-incident reviews, credible audit narratives
Pragmatic about risk and process; calm under pressure; bias to action
Security Developer coordinating vulnerabilities and malware issues for the Python Software Foundation. Collaborating with teams to enhance security practices and document threat models.
Presales Security Expert supporting sales leads and educating customers on security at Fortinet. Responsible for technical resource during sales calls and post - sales training.
IAM Director managing customer - facing identity and access management security programs at RBC. Assessing risks, developing controls, and ensuring compliance with standards and regulations.
Lead AI Red Team focusing on adversarial testing and security for enterprise - scale AI systems. Collaborate with engineering and compliance to map vulnerabilities and document findings.
Intern in operational security at Investissement Québec, supporting security alert management and vulnerability tracking in a supervised learning environment.
IT Information Security Lead at Mirego, responsible for technology and information security management. Overseeing compliance and IT strategies while maintaining operational efficiency.
Cybersecurity Specialist focusing on offensive security for Exposant 3. Performing penetration testing, security audits, and team knowledge transfer in a hybrid work setup.
Financial security advisor in life and health insurance, developing and maintaining client relationships. Selling insurance products and assessing customer needs to provide personalized solutions.
Senior Security Engineer designing and maintaining Microsoft 365 security solutions at ResMed. Focusing on compliance, incident response, and collaboration with global teams.