A quick run-down of the jobWe're looking for a Lead Security Architect to own and elevate security across the entire company. This is a hands-on, senior leadership role responsible for defining our security strategy, strengthening security practices, and driving solutions across our infrastructure, applications, and internal systems.This role is responsible for security across the company, with a particular focus on application security, compliance, and emerging Web3 and AI-related security risks. You'll set the direction for how our teams build securely, strengthen the security posture of our products, identify vulnerabilities, and introduce scalable security processes and tooling.We're looking for someone who can quickly understand our systems, identify risks, and drive action - not just produce reports. You'll also coordinate external audits and build security awareness across the company. You'll work closely with engineering, AI, automation, and operations teams, and collaborate with our existing security architect to strengthen security practices across the company.🌍 LocationRemote within EMEAApplications from outside this region will not be consideredWhat you’ll doOwn and strengthen company-wide security and complianceLead security efforts across infrastructure, applications, internal systems, and employee devicesIdentify risks and vulnerabilities across the organisation and ensure they are addressedEstablish scalable security processes and best practices across teamsOwn the organisation's compliance posture - define target frameworks, drive progress against them, and ensure requirements are reflected in day-to-day operationsCoordinate audits and external security workOwn relationships with external security firms and auditorsLead the organisation through compliance framework certifications end-to-endPlan and run security reviews and external audits, ensuring findings are tracked and resolvedAct as the internal authority on external security requirements and regulatory expectationsBuild security awareness across the companyDefine and own the company's security awareness and training programmeSet standards for access management, device security, and operational security hygieneDrive application securityDefine and own the Secure Software Development Lifecycle (Secure SDLC) across the engineering organisationWork closely with engineering teams to ensure secure design and implementation of products — getting into the detail where neededPersonally review tools, frameworks, and architectures for security risks and ensure findings drive actionSet the standard for how developers integrate security practices into the development lifecycleOwn Web3 securityBring a solid understanding of Web3-specific security risks — smart contract vulnerabilities, protocol exploits, wallet and key management, and on-chain threat vectorsApply experience from working in a Web3 environment to identify risks relevant to our infrastructure and productsWork directly with engineering teams to ensure Web3 security considerations are embedded in how we build and shipStay current on the evolving Web3 threat landscape and ensure the organisation is positioned ahead of emerging risksOwn AI SecurityIdentify and mitigate security risks related to AI-driven tooling, agents, and automationStay ahead of emerging threats introduced by AI integration across our stackImplement security tooling and automationOwn the security tooling strategy — defining requirements, evaluating solutions, and driving implementationEstablish monitoring standards, incident response processes, and security workflowsEnsure security is consistently embedded in engineering pipelines and toolingWhat makes a Good CandidateWe're looking for someone who combines strategic thinking, strong judgment, and the technical credibility to lead across engineering and leadershipExperienceProven experience owning or leading a security function — not just executing within oneBackground in security engineering or architecture — you understand how systems are built and where they breakExperience building or maturing security programmes in fast-moving engineering organisationsExperience in a Web3 or payments fintech environmentGovernance, Risk and Compliance (GRC)Solid knowledge of key compliance frameworks including SOC 2, ISO 27001, DORA, MiCA, the EU AI Act, NIS2, and related standardsExperience guiding organisations through certification and audit processes end-to-end — not just familiarity with the frameworks, but having done the workAble to translate regulatory and compliance requirements into practical internal programmes and controlsComfortable owning the GRC function and reporting on compliance posture to leadershipTechnical knowledgeStrong understanding of modern application security practicesExperience with security reviews, threat modelling, and vulnerability managementFamiliarity with cloud infrastructure security and developer toolingUnderstanding of AI security risks and emerging attack vectors is a strong plusExperience managing or mentoring security teams is a plusMindsetStrategic thinker who can translate risk into priorities and communicate them clearly to leadershipComfortable operating with autonomy in a fast-moving, ambiguous environmentAble to influence without authority across engineering and leadershipProactive by default - you identify problems before they're escalated to youComfortable getting into the detail when the situation calls for itCompany cultureEmbracing the differencesEmbrace your own differencesRespect and welcome the unique qualities of othersSee others’ differences as an opportunity to growOwn it, do itOwn tasks end-to-endHold yourself to a high bar for executionMake bold decisions, and be accountableUnderstand your limitations and seek for helpFail forwardTry - don’t be afraid to failLearn - don’t make the same mistake twiceAdapt - grow with the experienceHave fun togetherTake the time to get to know and understand each other betterDon’t take yourself too seriously and keep it light-heartedFun should be coming from a place of love and respectWhat you’ll getAnnual team offsites (Thailand in 2023 and Vietnam in 2024 were a blast, Marrakech in March 2025 was blast-ier; let’s see what happens in 2026!)30 days of PTOFlexible remote daysFlexible working hoursEquity participation from day 1Entitlement to work computer (choice of equipment)An annual 1,000€ personal development budget once you have worked 6+ months (pro-rated the first year)A one-time 1,000€ remote budget to use on coworking, office setup, etc.If you join us as an independent contractor, you’re only entitled to the first five benefits of this list.This role is engaged via employer of record (EOR) or independent contractor arrangement.Application processSetting yourself up for success starts with the application! Click here to discover valuable tips that will help you navigate our application process effectively.LI.FI is an equal opportunity employer. We encourage individuals of all backgrounds to apply. Join us in our dedication to fostering a workplace that values and respects each team member's unique contributions.Shortlisted candidates will undergo a comprehensive interview process, including a people operations interview, a take-home assignment, a meet-the-team & founder interview, and a reference check.For more information, visit our page detailing our hiring process!