Director of Security

April 20

Vanilla

WebsiteLinkedInAll Job Openings

Making Estate Planning Simple for Financial Advisors

51 - 200

Description

• Design and enforce security policies and procedures to safeguard company assets, including data, infrastructure, and intellectual property • Manage and mentor a team of security professionals, providing guidance and support to ensure the highest level of security across all areas of the company • Develop a long-term and short-term security strategy to ensure that the product is designed, built, and operated securely • Partner with the engineering teams to perform design and architecture reviews, including: Threat modeling and assessments, Code Reviews, Security/Vulnerability/Penetration Testing • Design and build new systems, tools, or processes to enforce security requirements, detect badness, or otherwise defend the company • Refine and help improve the security and compliance strategy for the company • Work with a variety of stakeholders, both technical and non-technical

Requirements

• 10+ years experience in security engineering in modern technology companies (fintech or SaaS preferred) • 4+ years of experience managing and leading a team of security engineers • Experience developing team members including hiring, retention, training, mentoring, feedback, and HR administration • BS in Computer Science, Security, or equivalent professional experience • Proven leadership abilities with the ability to inspire and motivate a team • Excellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to non-technical stakeholders • Strategic mindset with the ability to develop and execute long-term security strategies aligned with business objectives • Proven experience in securing/maintaining Web Applications/APIs/SaaS Platforms • Deep understanding of networking with the ability to understand complex systems and identify major security issues within • Proven experience in threat modeling, code reviews, security testing, vulnerability detection, and implementing remediation methods • Experience working in SOC2/High compliance work environments • Expertise in the AWS ecosystem, with working knowledge or experience in: Terraform/IAC/Helm/GitOps, Kubernetes/EKS, GuardDuty/WAF

Benefits

• Flexible paid time off policy and 12 company-wide paid holidays • Parental leave, 4 weeks for all full-time employees and up to 12 weeks for birthing parents • Medical, dental, and vision benefits • 401k match that can be initiated immediately upon hire • Budget for learning & development, health & wellness, and office setup