Security Lead

Role Overview

Daskalos is seeking a Security Lead to drive hands-on security across applications, cloud infrastructure and operations. This is a remote role for someone with 8-10 years of practical experience in Application Security, Cloud Security, DevSecOps and SecOps. Were looking for candidates who thrive in startup environments and want to make a real impact in securing education platforms. Prior experience with bug bounty programs or vulnerability research is a strong plus.

Key Responsibilities

Perform application security reviews, threat modeling and secure coding assessments

Implement and maintain DevSecOps pipelines to embed security into CI/CD workflows

Configure and monitor cloud security controls including IAM, network security and compliance

Conduct vulnerability assessments, penetration testing and bug bounty triage

Manage incident response and SecOps processes including detection, monitoring and remediation

Work closely with engineering teams to fix vulnerabilities and improve overall security posture

Contribute to security awareness by sharing best practices and training developers

Requirements

8-10 years of hands-on security experience in AppSec, Cloud Security, DevSecOps and SecOps

Proven track record in startup or fast-paced environments.

Strong knowledge of OWASP Top 10, MITRE ATT&CK, threat modeling and secure SDLC

Experience with bug bounty programs, penetration testing or vulnerability disclosure.

Familiarity with security tools (SAST, DAST, SIEM, XDR, container security, IaC scanning)

Clear communication skills to collaborate with engineers and stakeholders

Good to Have

Certifications (OSCP, OSCE, CCSP)

Exposure to leading security practices in early-stage companies