Director of Security and Infrastructure

Job not on LinkedIn

🔥 0 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Highway.ai

WebsiteLinkedInAll Job Openings

51 - 200 employees

Highway is the leading software and market insights solution for residential mortgage and real estate professionals. We were founded on the belief that homeownership is critical for helping individuals and families build wealth. Our expert guidance and leading technology are crucial components that work together to help industry professionals better serve their customers and help them achieve the dream of homeownership.

📋 Description

• Design and implement security controls across our application, AWS infrastructure, and endpoints • Conduct security assessments and penetration testing (or coordinate with external partners) • Monitor security tools and respond to alerts, incidents, and potential threats • Define and enforce security policies for code, infrastructure, and data access • Manage security tooling (SIEM, vulnerability scanning, endpoint protection, etc.) • Lead incident response efforts when security events occur • Educate engineering and business teams on security best practices • Evaluate and manage relationships with security vendors and consultants • Ensure high availability and performance of AWS infrastructure • Implement monitoring and alerting for system health and performance • Own disaster recovery and business continuity planning • Optimize infrastructure costs without compromising reliability or security • Collaborate with engineering on infrastructure scaling and architecture decisions • Manage infrastructure-as-code practices and configuration management • Develop and maintain security roadmap aligned with business objectives • Report on security posture and infrastructure health to CTO and executive team • Stay current on emerging threats, technologies, and industry best practices • Partner with engineering leadership on technical strategy and vendor selection

🎯 Requirements

• 5-7+ years in security engineering, infrastructure operations, or similar technical roles • Hands-on AWS experience - you should be comfortable configuring security groups, IAM policies, CloudWatch, and other AWS services • Security expertise across application security, network security, and endpoint protection • Infrastructure operations background - you've managed production systems and understand reliability, monitoring, and incident response • Proven ability to balance security with business needs - you know when to say "no" and when to find pragmatic solutions • Strong communication skills - you can explain technical security concepts to non-technical stakeholders • Self-directed and comfortable with ambiguity - you can prioritize and execute without constant direction • Experience in SaaS or financial services environments • Relevant certifications (CISSP, AWS Security Specialty, CEH, OSCP) • Familiarity with security frameworks (NIST, OWASP) • Experience with infrastructure-as-code (Terraform, CloudFormation) • Background in DevSecOps practices • Experience preparing for or maintaining security certifications (SOC 2, ISO 27001) • Mortgage or fintech industry background • Prior experience at a company in the 50-150 employee range