Senior Director of Platform Security

Gong Gong · Enterprise · Tel Aviv, Israel · Information Security

Lead the engineering of security infrastructure for an AI-powered revenue intelligence platform, focusing on building a sophisticated "Security Machine" that is "Secure-by-Default" across multi-cloud environments. This role involves developing end-to-end security strategy, managing a unified Security Engineering organization, and leading AI security initiatives for both platform products and internal usage, with a strong emphasis on securing complex production systems and multi-tenant AI architectures.

What you'd actually do

  1. The end-to-end security strategy across Application Security, Cloud (AWS/Azure), and Platform layers, ensuring a Secure-by-Default framework, as measured by deployment coverage, critical vulnerability reduction, and developer adoption metrics.
  2. A unified Security Engineering organization covering AppSec, SecDevOps, and AI Security leadership, collaboration points with adjacent teams (Infrastructure, R&D, Product Engineering), and building and mentoring a high-performing team.
  3. Lead our Platform Security domain — from Layer 7 protections to AWS architecture, security tooling, automated risk scoring, and AI-assisted automation workflows that improve detection and remediation times.
  4. Lead our AI strategy — enabling secure use in our platform products as well as for our internal engineering usage, and scaling AI security governance and controls.
  5. Own and execute the comprehensive Vulnerability Management program, from discovery (SAST/DAST/OSS scanning) through remediation tracking, and manage the external Bug Bounty program, with a focus on improving remediation SLAs and automation coverage.

Skills

Required

  • 10+ years in Security/Software Engineering
  • Scaling departments in high-growth R&D environments
  • Deep expertise in AWS/Kubernetes
  • Modern platform security practices
  • Infrastructure-as-Code (Terraform/Crossplane)
  • Secure coding (Java/Python/TypeScript)
  • Building security machines from the ground up

Nice to have

  • Azure

What the JD emphasized

  • Secure-by-Default
  • AI Security
  • AI-assisted automation
  • LLMs
  • model integrity
  • training data provenance
  • data exfiltration prevention
  • AI threat models

Other signals

  • AI Security Governance
  • AI-assisted automation
  • LLM Security