Lead the design, development, and implementation of information security solutions across Cloud Security, Infrastructure Security & Product Security.
Own the security strategy for CI/CD pipelines, including automated testing, SAST/DAST scanning, dependency checks, and secrets detection — providing technical advisory and governance across hybrid, multi-cloud environments.
Drive cloud security posture management, runtime protection, and code security through industry-leading cloud security and edge protection capabilities, ensuring continuous compliance and risk reduction.
Define and enforce security policies, standards, and best practices that balance delivery speed with a strong security posture, in alignment with regulatory and legal requirements.
Lead automation initiatives across cloud security processes, reducing manual effort and improving consistency at scale.
Oversee API security standards and runtime protection across services and microservices architectures.
Manage infrastructure security controls using infrastructure-as-code and container orchestration tooling, in line with container security best practices.
Anticipate operational and program risks, developing preventative measures and driving rapid incident response across environments.
Translate functional security requirements into technical roadmaps, guiding your team from strategy through to execution.
Define, track, and communicate security metrics and key performance indicators — creating actionable insights from data to inform prioritization, demonstrate delivery effectiveness, and drive continuous improvement.
Build strong cross-functional relationships with product and engineering squads, embedding security into development workflows and acting as a trusted security advisor at the leadership level.
A proven leader with hands-on depth in DevSecOps or security engineering, and the ability to inspire, grow, and manage a high-performing team.
Demonstrate deep knowledge of infrastructure security practices, concepts, and technologies, with proficiency across cloud security capabilities and modern security methodologies.
Experience governing CI/CD pipelines and authoring configuration management and deployment tooling across modern CI/CD platforms.
Strong scripting and development skills across languages such as Python, Bash, Go, or Java.
Solid understanding of cloud security concepts including network segmentation and secrets management across major cloud providers.
Experience anticipating operational risks and driving preventative measures across complex, fast-moving engineering environments.
A confident communicator who can translate security priorities to developers, stakeholders, and executives alike.
Familiarity with AI and machine learning capabilities as applied to DevSecOps and infrastructure management — including AI-assisted threat detection, anomaly detection, intelligent vulnerability triage, and the use of AI-powered tooling to enhance security automation and operational insight — is considered a strong advantage.
Background in Computer Science, Information Security, or equivalent practical experience.
Top Skills
What We Do
In 1969, Don and Doris Fisher opened the first Gap store on Ocean Avenue in San Francisco. They wanted to make it easier to find a great pair of jeans, and they did. Their denim and records store was a hit, and it grew to become one of the world’s most iconic brands. Today we’re represented in more than 1400 stores in over 40 countries, and online. We have headquarters in New York, London, Shanghai, Tokyo, and, of course, San Francisco. Our unique aesthetic is optimistic cool, elevated American style. Our clothes are crafted with care, with focused attention to thoughtful design. We believe in staying true to our heritage while creating what’s next. Don and Doris Fisher always wanted to “do more than sell clothes.” They wanted to support the people who ran their company, to be active in their communities, and to have a positive impact on the world. Their vision helped transform retail, and we’re still following their lead. We stand for freedom and possibility for all; we champion diverse ideas that transcend generations, geographies and genders.
.png){kind=logo}
