Director, Security

Job not on LinkedIn

August 14

Apply Now

Receive Emails with Similar Jobs

Underdog Fantasy

WebsiteLinkedInAll Job Openings

Gaming • Sports • B2C

Underdog Fantasy is a company specializing in fantasy sports and sports betting. Despite the technical issue mentioned in the text, it provides a platform where users can engage in fantasy sports contests, draft teams, and potentially win prizes based on the performance of real-world athletes. The company's focus is on providing a fun and competitive experience for sports fans who want to test their skills and luck in fantasy leagues and sports-related betting.

201 - 500 employees

🎮 Gaming

⚽ Sports

👥 B2C

📋 Description

• As the Director of Security, you will lead the team responsible for protecting Underdog’s products, infrastructure, and corporate environment from security threats. You will build and mature our security operations program, oversee threat detection and incident response, and partner closely with engineering, product, and leadership to ensure we maintain the trust of millions of players. • You will manage a team of security professionals, set the vision for our security operations, and guide priorities that align with company goals. You’ll also be the point person during security incidents, driving action and collaboration across teams to mitigate risks quickly and effectively. • About the role • Lead the security team, including managing managers and individual contributors. • Set the vision, build roadmaps, and ensure the team’s priorities align with company objectives. • Oversee threat detection, incident response, vulnerability management, and threat intelligence programs. • Partner with product and engineering teams to ensure security is integrated into the software development lifecycle. • Guide incident management from detection through remediation, including executive and cross-functional communication. • Foster a culture of psychological safety, accountability, and continuous improvement within the security team. • Manage team budgets, vendor relationships, and service provider contracts. • Collaborate with legal, compliance, and privacy teams to assess and mitigate technical, business, and regulatory risks. • Stay current with emerging threats, vulnerabilities, and security best practices. • Who you are • 8+ years in cybersecurity leadership, including experience securing large-scale cloud and web applications. • 4+ years managing security teams, including managers and ICs. • Hands-on experience in incident response, SIEM, threat detection, and vulnerability management. • Familiarity with AWS services (CloudTrail, IAM, EC2, S3, RDS, etc.) and modern container orchestration environments (Kubernetes). • Experience with common corporate security practices (endpoint, SaaS, IAM security). • Strong communication skills, with the ability to engage both technical and non-technical audiences. • Experience collaborating with executives, legal counsel, and PR teams during security incidents. • Even better if you have • Experience with mobile application security at scale. • Familiarity with security automation, IaC tools (Terraform, Helm), and security logging tools (Datadog, Sumo Logic). • Relevant certifications (CISSP, CISM, or equivalent). • Experience working with bug bounty programs and vulnerability disclosures.

🎯 Requirements

• 8+ years in cybersecurity leadership, including experience securing large-scale cloud and web applications. • 4+ years managing security teams, including managers and ICs. • Hands-on experience in incident response, SIEM, threat detection, and vulnerability management. • Familiarity with AWS services (CloudTrail, IAM, EC2, S3, RDS, etc.) and modern container orchestration environments (Kubernetes). • Experience with common corporate security practices (endpoint, SaaS, IAM security). • Strong communication skills, with the ability to engage both technical and non-technical audiences. • Experience collaborating with executives, legal counsel, and PR teams during security incidents. • Experience with mobile application security at scale. • Familiarity with security automation, IaC tools (Terraform, Helm), and security logging tools (Datadog, Sumo Logic). • Relevant certifications (CISSP, CISM, or equivalent). • Experience working with bug bounty programs and vulnerability disclosures.

🏖️ Benefits

• Unlimited PTO (we're extremely flexible with the exception of the first few weeks before NFL season) • 16 weeks of fully paid parental leave • A $500 home office allowance • A connected virtual first culture with a highly engaged distributed workforce • 5% 401k match, FSA, company paid health, dental, vision plan options for employees and dependents