Musixmatch
music metadata
SecurityPracticeLead
Neural analysis suggests this role is
optimal for Mid+ candidates.
“Security Practice Lead at Musixmatch. Skills: Security Practice Lead, information security strategy, AI security, risk and incident management, policy and compliance, cross-functional leadership. Define and own the security strategy. Oversee comprehensive security across cloud, network, and application layers”
Industry & Context.
What They're Looking For.
Must Have
Proven information security leadership experience with the ability to translate technical risks into business language, Deep knowledge of standard security frameworks (ISO 27001, SOC 2, GDPR) and background in policy development, Solid understanding of AI security: familiarity with AI-specific vulnerabilities (e.g., OWASP Top 10 for LLMs) and experience securing data privacy within machine learning pipelines, Hands-on experience with cloud, application, and device security (MDM), incident management, and post-incident recovery, Ability to work cross-functionally with engineering, product, AI/Data, legal, and executive teams
Nice to Have
Security certifications such as CISSP, CISM, CEH, or CAISP (Certified AI Security Professional), Familiarity with AI risk management frameworks (e.g., NIST AI RMF), Experience in the music, media, or entertainment tech industry, Familiarity with DPO workflows, privacy-by-design principles, and working with regulatory bodies
What You'll Do.
Define and own the security strategy
Oversee comprehensive security across cloud
and application layers
Partner with engineering on vulnerability management
Establish and enforce security guardrails for AI pipelines and LLM deployments
Protect against AI-specific threats (e.g.
Assess security risks
Monitor processes continuously
Coordinate effective incident response and recovery efforts
Develop and manage security policies
Ensure compliance with privacy laws
and emerging AI regulations (e.g.
Align closely with DPO directives
Collaborate with senior leadership to embed security (and AI security-by-design) into business decisions
Champion a security-first culture across the company
Design and deliver training programs
Run awareness campaigns
Act as an internal advocate who makes security understandable and relevant for everyone
Manage risk assessments for external vendors and consultants to ensure third-party security standards are met
How You'll Work.
Team & Collaboration
Partnering with engineering on vulnerability management; Collaborate with senior leadership to embed security into business decisions; Work cross-functionally with engineering, product, AI/Data, legal, and executive teams; Act as an internal advocate who makes security understandable and relevant for everyone, from engineers to non-technical teams
Communication Scope
translate technical risks into business language; making security understandable and relevant for everyone
Full Job Description
## Description About Musixmatch Musixmatch is the leading music metadata company, featuring the world’s largest lyrics catalog and a community of over 80M contributors. Musixmatch is the trusted global partner of companies like Spotify, Apple, Amazon Music, Meta, Google, YouTube, Tidal, and Snapchat and works with nearly 4,000 music publishing rightsholders (representing more than 225,000 songwriters), including Sony Music Publishing, Universal Music Publishing, Warner/Chappell, Kobalt, BMG Rights, and the Harry Fox Agency. We are a bunch of creatives who care about our work and what we do. We believe that participation and collaboration are key to getting things done well. We are looking for tech-savvy people who are eager to learn in a fast-paced environment, who have an international outlook on life, and who love taking on new challenges. Position: We are looking for a Security Practice Lead to own and drive information security across our organization. You will shape our security strategy, protect our systems, data, and expanding AI infrastructure, and act as a key voice in company-wide decisions. This is a high-impact, cross-functional role at the intersection of engineering, AI development, compliance, and leadership. What you will do: Define and own the security strategy: Oversee comprehensive security across cloud, network, and application layers, partnering with engineering on vulnerability management. Secure AI & ML integrations: Establish and enforce security guardrails for AI pipelines and LLM deployments, protecting against AI-specific threats (e.g., prompt injection, data poisoning, supply chain) and ensuring model safety. Risk & Incident Management: Assess security risks, monitor processes continuously, and coordinate effective incident response and recovery efforts. Policy & Compliance: Develop and manage security policies, ensuring compliance with privacy laws, standard frameworks, and emerging AI regulations (e.g., EU AI Act), aligning close
Applying for this Security Practice Lead role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Lever
- Lever uses a streamlined one-page form — apply in under 5 minutes.
- LinkedIn import works well; review parsed data before submitting.
- The cover letter field is optional but visible to reviewers — use it to differentiate.
- Referral codes from employees can significantly boost visibility of your application.
ANONYMOUS · UNFILTERED
What do employees actually say about Musixmatch?
Real rants from real employees. Read before you apply.