Kong is looking for a driven Director of Security Operations & Incident Response to lead our critical cloud security functions.

If you are a leader with a deep commitment to secure-by-design principles and thrive in the dynamic landscape of DevSecOps, threat detection, security automation, and incident response, we want to hear from you.

This is a pivotal, hands-on leadership role that demands a unique blend of profound technical expertise, exceptional communication, and a genuine passion for mentoring. You will be instrumental in shaping Kong's security posture across our diverse multi-cloud environment (AWS, Azure, GCP) and our suite of SaaS products.

What You'll Do:

• Lead Security Strategy: Drive the evolution of Kong's security strategy, ensuring its robust implementation across all platforms and products.
• Operational Excellence: Oversee and enhance our Worldwide Security Operations and Incident Response team, maintaining a high level of preparedness and efficiency.
• Regulatory Compliance: Design and implement Kong cybersecurity initiatives, ensuring alignment with critical regulations and standards such as SOC2, ISO27001, CRA, DORA, NIS2, and GDPR..
• Cross-Functional Collaboration: Partner effectively with business and technical stakeholders to define security use cases, proactively detect threats, and ensure continuous compliance with industry standards.
• Team Leadership & Development: Build, mentor, and inspire a high-performing, multidisciplinary security engineering team, fostering an environment of innovation, collaboration, and continuous learning.
• Customer Centricity: Support customer security operation needs and requirements.

.

What You'll Bring:

• Cybersecurity Expertise: Strong working knowledge of cybersecurity architecture and frameworks (e.g., NIST, CIS, ISO 27001).
• Cloud Security Mastery: Proven experience in designing and securing cloud environments (AWS, Azure, GCP), with a deep understanding of secure infrastructure design principles.
• Hands-On Tooling: Practical, hands-on experience with a wide array of Enterprise Security tools and technologies.
• Threat Detection & Response: Expert-level proficiency in incident detection, threat analysis, security monitoring, and effective incident response methodologies.
• Analytical Problem Solver: Ability to meticulously analyze complex technical environments, accurately identify risks, and design practical, scalable, and effective security solutions.
• Exceptional Communicator: Outstanding communication skills, with the ability to articulate complex security needs and translate them into clear business value for diverse audiences.