
NEAR Foundation · Remote - Global
ABOUT NEAR FOUNDATION NEAR Foundation supports the growth of the NEAR ecosystem — including NEAR AI, NEAR Intents, and the underlying NEAR Protocol — across mu...
NEAR Foundation supports the growth of the NEAR ecosystem — including NEAR AI, NEAR Intents, and the underlying NEAR Protocol —
across multiple entities and product nodes. Strong IT and security underpin everything we do, and we are scaling the function to
match the size and complexity of the ecosystem.
We are hiring a Senior IT Security Engineer to be the deep technical owner of our information security work. This is a senior
individual contributor role for someone who has spent years operating at the engineering edge of IT and security and is now
looking for broad scope and meaningful ownership.
You will bring the technical depth to design, harden, and automate the security systems and controls our team and ecosystem rely
on, and you will lead our information security program end-to-end. You will work alongside our IT Director, who owns the broader
IT function, and partner with our IT Operations team, who handle day-to-day support and provisioning — letting you focus squarely
on security engineering and program leadership. Near-term priorities include leading SOC II Type 2 and ISO 27001 readiness at NEAR
AI, supporting the needs of the NEAR Security Committee (NSC), and partnering with the incoming NEAR Intents Head of Security on
shared standards.
Information Security Program
shared work.
liaison, and remediation.
Security Engineering
privileged access) — partnering with the IT Director and IT Operations team on day-to-day operations.
and workflows that tighten controls and reduce manual work.
technical due diligence.
Cloud and Policy
partnership with infrastructure and product teams.
end-to-end.
Clear mandate, executive sponsorship, and real scope across IT and security in a fast-moving ecosystem. Senior IC role with strong
path to broader security leadership as the program matures.
A competitive compensation aligned with senior-level security engineering roles across leading AI and Web3 organizations,
including a combination of salary and NEAR token incentives. Benefits include comprehensive healthcare coverage, a remote-first
work environment, and a professional development and learning budget.
We value
NEAR is an affirmative action and equal opportunity employer. All qualified applicants will receive consideration for employment
without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran
status, or genetic information. NEAR is committed to providing access, equal opportunity and reasonable accommodation for
individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation, please
let your recruiter know during the interview process.
Applications deadline: We are conducting interviews actively and aim to fill this role as soon as we find someone suitable. THE OPPORTUNITY We're looking for a senior Security Engineer to own security at Apollo Research from end to end. You'll be the first dedicated security hire at Apollo. Security at Apollo exists to maintain the trust of our frontier AI lab partners and enable our research mission. This role sits within the engineering team and reports directly to the CEO. YOU HAVE THE OPPORTUNITY TO - Build and own Apollo's security programme. Own the security roadmap, conduct risk assessments, and evolve the programme as the org grows. You decide what Apollo's security posture needs to look like given our size, threat model, and partner relationships. - Maintain the trust of our frontier AI lab partners. Become the primary security point of contact for partner security teams. Build relationships with partner CISOs, produce and maintain technical documentation on Apollo's security practices, and demonstrate that our security posture meets the bar required for our ongoing partnerships. - Set security direction for engineering. Define security principles and AppSec strategy which the engineering team implements. Build paved roads that make the secure path easy for engineers. - Define how Apollo uses AI tools, agents, and integrations. Decide what's approved, what data can go where, and how new tools get vetted. This is a live and evolving challenge, and you'll need to balance security with the fact that researchers need to use cutting-edge tools to do their jobs. - Own the security tooling stack and automate security operations. Select, implement, and manage security controls including EDR/MDR, endpoint management, email protection, and identity management. Automate wherever possible: zero-touch deployments, IaC for security tooling, automated provisioning and deprovisioning. - Drive compliance and certification. Lead certification efforts (ISO 27001, SOC 2) as needed to meet partner requirements. Automate where needed and treat compliance as a byproduct of good security practice. - Own IT administration across the organisation. Manage Google Workspace, define access policies, and build secure onboarding and offboarding processes. WHAT WE'RE LOOKING FOR - Engineering mindset. You treat security operations and GRC as engineering problems. You reach for automation and systems solutions over manual processes. - Pragmatism. You understand that security exists to enable Apollo's mission and maintain partner trust, and you tailor your advice to our risk profile. - Leadership. You are capable of building out our security programme from scratch. - Hands-on. In addition to leading the security programme, you are willing and able to drive implementation yourself. - Speed. You make good-enough decisions quickly and execute fast once a decision is made. - Adaptability to new developments. You have a strong base of knowledge that enables you to make decisions under uncertainty as AI tooling and the threat landscape evolve. - Stakeholder credibility. Non-security people trust you internally, and you can credibly represent Apollo to lab partner security teams externally.
About us: Causaly is redefining how humans acquire knowledge and develop insights in biomedicine. Our AI-powered platform enables researchers and decision-makers to discover and interpret evidence from millions of scientific publications, clinical trials, regulatory documents, and other complex data sources in minutes. We are building the world’s most advanced biomedical knowledge platform, powered by a high-precision Knowledge Graph and GenAI capabilities. Our technology is already used by leading biopharmaceutical organizations to accelerate drug discovery, improve safety, and drive better decision-making. Backed by top-tier investors including ICONIQ, Index Ventures, Pentech, and Marathon, we are scaling rapidly and expanding our product suite and market presence. About the Role We are looking for a Senior or Staff Security Engineer to join our security team and own our vulnerability management program, collaborate with several Engineering and Product teams as a Security advisor and support SecOps. You will operate with a high degree of autonomy — defining strategy, building processes, and acting as a trusted security advisor to our engineering organisation. What You'll Do * Own the vulnerability management program end-to-end: strategy, tooling, prioritisation, and remediation tracking across dependencies, containers, and cloud environments. * Define and maintain a dependency security strategy, including policies for third-party library adoption and update cadence. * Integrate and maintain security tooling in CI/CD pipelines (SAST, SCA, secrets detection, container scanning). * Act as a security consultant to product and engineering squads — supporting design reviews, architecture decisions, and secure coding practices. * Define and maintain security standards and guidelines practical for development teams. * Manage and continuously improve the Security Champions program — growing security awareness and capability across engineering teams. * Support SecOps in incident triage and response, contributing security engineering context where needed. Requirements * Strong knowledge of cloud security — IAM, network security, secure configuration best practices. * Hands-on experience with security tooling in CI/CD pipelines (SAST, SCA, secrets scanning, container scanning). * Proven experience in a vulnerability management role, through the entire lifecycle. * Passionate and knowledgeable about using LLMs for building robust security practices, including triage, secure code review, threat analysis and tooling * In-depth knowledge of secure coding practices in Node.js, TypeScript, Python, and/or React. * Familiarity with security frameworks and standards (e.g. OWASP, NIST, CIS Benchmarks). * Strong communication skills, with the ability to translate risk for both technical and non-technical audiences. Nice to Have * Experience with Semgrep for static analysis and custom rule authoring. * Experience with Wiz for cloud security posture management. * Experience running or contributing to a Security Champions program. * Experience with threat modelling (e.g. STRIDE). * Familiarity with SOC 2 and ISO 27001. * Relevant certifications are considered a plus (e.g. CISSP, IaaS specific certifications, etc..). Benefits UK: 💰 Competitive compensation package 🩺 Private medical insurance 🦷 Private dental insurance 📔 Life insurance (4 x salary) 🤓 Personal development budget 🧘 Individual wellbeing budget 🌴 25 days holiday plus bank holidays 🥳 Your birthday off! 🚀 Potential to have real impact and accelerated career growth as a member of an international team that's building a transformative AI product. We are on a mission to accelerate scientific breakthroughs for ALL humankind, and we are proud to be an equal opportunity employer. We welcome applications from all backgrounds and fairly consider qualified candidates without regard to race, ethnic or national origin, gender, gender identity or expression, sexual orientation, disability, neurodiversity, genetics, age, religion or belief, marital/civil partnership status, domestic / family status, veteran status or any other difference.
CUBE are a global RegTech business defining and implementing the gold standard of regulatory intelligence for the financial services industry. We deliver our services through intuitive SaaS solutions, powered by AI, to simplify the complex and everchanging world of compliance for our clients. Why us? 🌍 CUBE is a globally recognized brand at the forefront of Regulatory Technology. Our industry-leading SaaS solutions are trusted by the world’s top financial institutions globally. 🚀 In 2024, we achieved over 50% growth, both organically and through two strategic acquisitions. We’re a fast-paced, high-performing team that thrives on pushing boundaries—continuously evolving our products, services, and operations. At CUBE, we don’t just keep up we stay ahead. 🌱 We believe our future is built by bold, ambitious individuals who are driven to make a real difference. Our “make it happen” culture empowers you to take ownership of your career and accelerate your personal and professional development from day one. 🌐 With over 700 CUBERs across 19 countries spanning EMEA, the Americas, and APAC, we operate as one team with a shared mission to transform regulatory compliance. Diversity, collaboration, and purpose are the heartbeat of our success. 💡 We were among the first to harness the power of AI in regulatory intelligence, and we continue to lead with our cutting-edge technology. At CUBE, You will work alongside some of the brightest minds in AI research and engineering in developing impactful solutions that are reshaping the world of regulatory compliance. Purpose Provide senior-level security engineering expertise as part of a shared enabling function, helping teams across the organisation design, build, and operate systems securely. This role contributes to the organisation’s mission by embedding security into systems and development workflows, reducing risk through secure patterns and automation, and raising the overall security capability of engineering teams. Key Responsibilities Act as a senior hands-on contributor to the design, implementation, and operation of security controls within systems and platforms. Partner with Software Engineers and Platform Engineers to embed security considerations into system design, code review practices, and delivery workflows. Define, promote, and evolve secure development and operational practices, enabling teams to identify and address security concerns independently. Design and maintain secure defaults, guardrails, and reusable security patterns that teams can safely adopt. Build and operate security tooling and automation that integrates naturally into development and delivery processes. Support threat modelling, design review, and targeted code or configuration review, focusing on enablement rather than approval. Participate in build–run ownership for security-related systems and controls, including monitoring and incident response. Lead investigation and response to security incidents in collaboration with affected teams, ensuring learning is shared and acted upon. Support vulnerability management by helping teams prioritise, remediate, and verify security issues. Provide security input to change management processes, ensuring risk is understood and mitigated without unnecessary friction. Collaborate with Architecture and Platform Engineering to ensure security principles are reflected in shared patterns and reference designs. Contribute to security standards and guidance in partnership with governance and risk functions. Mentor and support Junior Security Engineers and Security Engineers, raising security maturity across the organisation. Skills & Competencies Strong security engineering expertise with experience securing modern software and cloud-based systems. Ability to translate security risks into practical engineering guidance and controls. Experience building or operating security tooling, automation, and reusable patterns. Good understanding of application, infrastructure, and cloud security principles. Experience responding to security incidents and supporting effective remediation. Clear communication skills, able to explain security concepts and risks to non-specialists. Collaborative mindset focused on enabling teams rather than policing delivery. Required Experience & Qualifications Relevant experience, training, or demonstrated capability for the role's track, domain, and level. Practical understanding of the tools, methods, governance, and delivery practices used in the role. Ability to work effectively with relevant stakeholders and contribute to reliable, high-quality outcomes. Relevant degree, professional qualification, certification, apprenticeship, or equivalent experience is desirable where applicable. Performance Indicators Increased adoption of secure patterns and practices by engineering teams. Reduction in repeat security issues and common failure modes. Improved quality of security considerations in design and code reviews. Effective handling of security incidents with clear learning and follow-up actions. Positive feedback from teams regarding the usefulness and approachability of security support. Development Pathways Progression to Lead Security Engineer or broader security leadership roles as the organisation matures. Interested? If you are passionate about leveraging technology to transform regulatory compliance and meet the qualifications outlined above, we invite you to apply. Please submit your resume detailing your relevant experience and interest in CUBE. CUBE is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.