Head of Security (JetBrains Cloud Platform)

Описание вакансии

At JetBrains, we are building an AI-native platform for software development that connects developer workflows, team-level collaboration, and organizational control in a single coherent system. Designed to work across teams, tools, and environments, this platform serves as the execution and governance layer for AI-driven development, with security, policy, and auditability built in from day one.

We are now looking for a Head of Security to own the security strategy and execution for the agentic platform and its core services (governance, identity, agent execution, integrations, telemetry, and billing surfaces). This is a senior leadership role that combines product security, cloud and platform security, and enterprise trust-building. You will partner closely with product and engineering leaders to ensure we can ship fast while meeting the security expectations of regulated and security-conscious organizations.

Key responsibilities

Platform security engineering and operational readiness

• Build and run an actionable security program, taking responsibility for vulnerability management, security testing, incident response playbooks, on-call interfaces, and secure SDLC practices aligned with the platform’s release cadence.
• Define and implement security controls for platform foundations, such as identity and organizational model, integrations, telemetry, billing surfaces, and administrative UX.
• Lead readiness for enterprise security reviews, ensuring security documentation, security posture transparency, and customer-facing security assurance artifacts.

Success criteria:

• Implementation of a repeatable security review process that scales with releases (not dependent on heroics).
• Measurable reduction in critical security risks across the platform’s surface.

Customer trust, compliance enablement, and field partnership

• Partner with Sales, Solutions, and Professional Services teams to unblock early design partners and enterprise rollouts with credible security answers and practical mitigations.
• Drive a pragmatic compliance path (with enterprise-grade expectations) that includes security control mapping, audit support, and customer security questionnaires, at speed.
• Act as a security-facing executive in customer conversations when needed.

Success criteria:

• Security becoming an adoption enabler, with fewer blocked deals or PoCs due to security concerns, as well as faster security sign-offs.
• Implementation of a clear enterprise-grade security baseline for the platform that supports scale.

Leadership and team building

• Build and mentor a lean security team (platform security and product security), with strong relationships with infrastructure, identity, and agent runtime teams.
• Implement decision frameworks that clarify what must be centralized vs delegated, when to block vs mitigate, and how to ship securely in an early-stage product environment.
• Establish security KPIs that reflect real risk reduction and adoption readiness (not vanity metrics).

Success criteria:

• A high-trust, high-velocity security organization that product and engineering teams want to partner with.
• Security priorities that are clearly tied to platform milestones and customer adoption.

Requirements

• Senior experience leading platform or product security for a cloud platform, developer tooling platform, or infrastructure product.
• Strong hands-on background in threat modeling, secure architecture, identity and access control, secret management, isolation and sandboxing, and supply chain security.
• Experience building security programs that support enterprise adoption (security reviews, compliance enablement, incident readiness, etc.).
• Comfort operating in early-stage, evolving product contexts, with the ability to define the security system while the product is still being built and help the organization ship with confidence.

#LI-EP1

• #LI-HYBRID

We are an equal opportunity employer

We know great ideas can come from anyone, anywhere. That’s why we do our best to create an open and inclusive workplace – one that welcomes everyone regardless of their background, identity, religion, age, accessibility needs, or orientation.

We process the data provided in your job application in accordance with the Recruitment Privacy Policy.