Head of Security, CartaX
Employment Type: Full-Time
The Company You'll Join
At Carta we create owners and make private markets liquid.
We live in a world where some people live on the equity stack and enjoy exponential wealth growth and preferential tax treatment; others live on the debt stack and may work their entire lives for a company and retire only with the cash they've managed to save from their paychecks. Our contribution to solving the wealth inequality problem is moving people from the debt stack (payroll) to the equity stack. By making it as easy to issue equity to employees as it is to put them on payroll, we can create more owners.
At Carta, we are helpful, transparent, fair, and kind. We are relentless executors, unconventional thinkers, and masters of our craft.
To learn more, here is what one of our investors wrote about leading our Series F.
The Team You'll Work With
You will be joining our newest team at Carta called CartaX. The CartaX team is creating more owners by removing restrictions on when and how employees exercise equity. Our team is building a private stock market that will allow the trading of shares in return for liquidity for employees of pre-IPO companies. CartaX will be the world's first vertically integrated financial marketplace for private securities.
As founding engineer your'll drive the security team around designing and building security policies for a greenfield marketplace that operates in a heavily regulated environment. The security team ensures the confidentiality, integrity, and availability of CartaX's systems and data. This person will lead the design and implementation of security features from network, application, infrastructure and corporate perspectives.
The Problems You'll Solve
The security team will work with the compliance organization to define and implement controls as needed to adhere to NIST 800-53 best practices. They'll tasked with securing financial systems in the cloud, architecting segregated workload environments and deploying as well as managing a suite of cybersecurity technology systems to defend the firm.
Some of the problems you'll help us solve are:
* Defining and implementing a control scheme around the systems, and procedures.
* Working on security design and infrastructure around service communication and deployment.
* Securely designing and implementing detect and remediation controls around our AWS infrastructure.
* Designing and implementing network security measures and monitoring systems.
You have staff level experience securing infrastructure and systems specifically with linux based distributed systems on AWS. You have experience with cloud networking (e.g. AWS VPC, subnetting, etc) and service and network segmentation solutions. Hands-on experience configuring and operating tools related to log collection and analysis, system security hardening, and vulnerability management. You have experience securing containerized applications and systems, specifically deployed on Kubernetes.
Most importantly you're excited to build security for a product that will fundamentally change the way private companies view liquidity, going public and how employees exercise their options.
We are an equal opportunity employer and are committed to providing a positive interview experience for every candidate. If accommodations due to a disability or medical condition are needed, connect with us via email at email@example.com. As a company, we value fairness, helpfulness, transparency, leadership and build our teams around these values. Check out our careers page to get to know us better as you think about your next step at Carta.