Open to work · Toronto · Hybrid / Remote

Chris Davis

Security & Engineering Executive

A practitioner-leader who can chair an audit conversation in the morning, review a security PR in the afternoon, and author the corporate AI policy that night. Functional CISO and player-coach with 25 years of unbroken custody of an enterprise Canadian SaaS platform.

Get in touch View GitHub

Toronto, ON

Functional CISO · Engineer

0 yrs

Custody of one SaaS platform

0M+

ARR protected ($USD)

Material security incidents

Open-source GitHub stars

SOC 2 Type 2GDPRAI GovernanceVantaSecure SDLCJavaPHP / LaravelDart / FlutterTypeScriptPostgreSQLVendor RiskM&A Diligence

About

Twenty-five years of unbroken custody.

Security and engineering executive with 25 years of unbroken custody of the systems, codebase, and PII that underpin a Canadian SaaS platform serving enterprise clients responsible for ~$15M ARR. Functional CISO at Venngo since the role existed in practice — owner of SOC 2 Type 2, GDPR posture, AI governance, the internal risk committee, and customer security diligence.

A practitioner-leader who can chair an audit conversation in the morning, review a security PR in the afternoon, and author the corporate AI policy that night. Hired, trained, and retained the engineering function over a quarter century without a single material incident.

Expertise

Three disciplines, one operator.

Security Leadership & Governance

SOC 2 Type 2 program ownership, GDPR compliance, risk committee chair, M&A and customer security diligence, vendor risk, PII custody, Vanta-driven control automation, and secure SDLC.

AI Governance & Responsible Adoption

Authored corporate Generative AI usage policy. Governance for Microsoft Copilot, GitHub Copilot, and internal LLM tooling. Public speaker on AI under regulatory constraint.

Engineering Leadership

Headcount and compensation strategy, hiring, performance management, coaching new managers. Player-coach across Java, PHP/Laravel, Dart/Flutter, and modern TypeScript stacks.

Experience

A quarter century at one company — by design.

Functional CISO & Engineering Leader

Venngo

25 years

Unbroken custody of the systems, codebase, and PII underpinning a SaaS platform serving enterprise clients responsible for ~$15M ARR.
Owner of SOC 2 Type 2, GDPR posture, AI governance, the internal risk committee, and customer security diligence.
Hired, trained, and retained the engineering function over a quarter century without a single material incident.

Open Source

Selected projects on GitHub.

Dart packages, AI agent tooling, and developer infrastructure — actively maintained at @cdavis-code.

All repositories

Featured

easy_onvif_workspace

ONVIF protocol implementation in Dart — integrate IP cameras and NVRs into Dart and Flutter applications.

Dart 45

Featured

google_vision_workspace

Google Vision in Dart — image labeling, face/logo/landmark detection, OCR, and safe-search classification.

Dart 22

Featured

obs_websocket_workspace

Dart connector for OBS Studio's obs-websocket plugin — remote control broadcast software programmatically.

Dart 19

yt_workspace

Multiple YouTube APIs (Data, Live Streaming, Analytics) wrapped in a single Dart library.

Dart 12

dart_agent_core

Dart framework for stateful AI agents — tool use, skills, sub-agent delegation, planning, streaming, evals, multi-provider LLM support.

Dart 0

easy_api_workspace

Dart code generator that transforms annotated functions into Model Context Protocol (MCP) servers.

Dart 1

opencode_api

Dart package wrapping the opencode.ai API using retrofit for type-safe HTTP requests.

Dart 4

tournament-autopilot

AI-powered charity golf tournament management — QwenCloud Hackathon Track 4.

TypeScript 0

Contact

Let's build something secure.

Currently open to security leadership, fractional CISO, and senior engineering roles — Toronto, hybrid, or fully remote.

Connect on LinkedIn @cdavis-code