We lead seed rounds and partner with founders from 0 to 1

companies
Jobs
Search 
jobs
Explore 
companies
Join talent network
Talent
My job alerts

Founding Security Engineer

Attention

Attention

Canada
Posted on Mar 18, 2026
Apply now

About the Role

We’re looking for a Founding Security Engineer to build and lead our security program as we scale from Series A toward Series B.

This is a hands-on role with leadership trajectory. You will work directly with our engineering and platform teams to design secure systems, lead compliance efforts, and establish the foundations of a mature security program.

The person in this role is expected to grow into Head of Security as the company scales.

If you enjoy building security from the ground up, working closely with engineers, and helping a company achieve enterprise-grade security posture, this role is for you.

What You’ll Own

Security Architecture & Engineering

• Embed security-by-design into our platform and infrastructure.

• Partner with engineering to implement DevSecOps practices and automated security testing.

• Conduct architecture reviews, threat modeling, and security assessments.

• Implement security tooling across cloud infrastructure and CI/CD pipelines.

Compliance & Trust

• Lead security certification initiatives such as ISO 27001 and SOC 2.

• Own customer security questionnaires and security reviews with enterprise clients.

• Develop and maintain security policies, controls, and documentation.

Security Operations

• Manage vulnerability management and security patching processes.

• Coordinate penetration testing and remediation programs.

• Introduce automated and AI-assisted security testing tools.

Security Program Development

• Establish risk management and security governance practices.

• Build business continuity and disaster recovery programs aligned with ISO 22301.

• Develop the foundations for a future security team.

What We’re Looking For

• 5–8+ years experience in cybersecurity, security engineering, or cloud security.

• Strong understanding of modern cloud security architectures (AWS/GCP/Azure).

• Experience implementing or supporting ISO 27001, SOC 2, or similar frameworks.

• Hands-on experience with DevOps / DevSecOps practices.

• Familiarity with penetration testing, vulnerability management, and threat modeling.

• Ability to work closely with engineering teams and leadership.

Bonus Experience

• Experience building security programs in high-growth startups.

• Experience with container security, Kubernetes, and infrastructure-as-code.

• Experience with red team / blue team exercises.

• Familiarity with AI-driven security tools or automated pentesting platforms.

Apply now
See more open positions at Attention
Privacy policyCookie policy