Match score not available

Director Of Security Engineering

extra holidays - extra parental leave

Remote:

Full Remote

Contract:

Full time

Salary:

17 - 90K yearly

Experience:

Expert & Leadership (>10 years)

Work from:

United States

Offer summary

Qualifications:

Extensive experience with application development security, Deep knowledge of AWS cloud infrastructure auditing, Proficient in securing containerized workloads, Experience with Infrastructure as Code tools, Ability to lead a small security team.

Key responsabilities:

Drive strategy for security processes and governance
Implement security in a DevSecOps capacity
Manage intrusion detection and prevention processes
Develop documentation for security systems and procedures
Respond to and escalate security incidents

SmartBiz Financial Services Scaleup https://www.smartbizloans.com/

51 - 200 Employees

See more SmartBiz offers

Job description

Committed to DEI&B - Mogul Diversity Badge, 2022

Great Place to Work Certified, August 2022 - August 2023 USA

Overview

SmartBiz is on a mission to transform small business banking. SmartBiz is the leading technology-powered small business financing platform equipping entrepreneurs with access to the right capital at the right time. To date, we’ve connected borrowers with more than $9 billion in funding while increasing efficiency for our network of banks and trusted lending partners. More than 230,000 entrepreneurs have utilized our platform to access the funding they need to grow, with 60%+ of loans made to minority, women, or veteran-owned businesses.

Position Overview

At SmartBiz, security is a critical pillar of who we are and how we operate. You will join in a crucial position that will be assessing, recommending, designing, and improving our security solutions and processes. You will help drive the focus on the issues that matter and can see through the noise of all of the potential areas to focus. You will come in and help mature our security monitoring and threat detection/reporting. You’ll continue to build out a maturity model for security improvements working with engineering leadership to establish a roadmap to level up the organization and lead changes to help establish secure SDLC partnering with the rest of the organization.

You must be highly technical and adaptable to the rapid pace of development and delivery in a small but evolving company. The most successful leaders here are comfortable working with minimal supervision, are innovative, thoughtful, and can prioritize and effectively communicate complex issues.

How You Will Make An Impact:

Drive overall strategy and implementation of security processes, procedures, and governance through a combination of preventive and reactive controls and policies in a cloud environment
Functioning in a DevSecOps capacity working closely with engineering and infrastructure teams to support and implement security at every level of the stack
Work operations teams to implement intrusion detection and prevention processes, techniques, and solutions
Implement security architecture, methods, and controls required to meet security, compliance, and audit requirements
Respond to, and when appropriate, resolve or escalate security incidents
Develop and maintain documentation for security systems and procedures

Who You Are:

Extensive experience working with application development teams to secure front-end applications (React) and backend services (Python and Ruby) by adding security practices to the software development and delivery process
Deep knowledge of auditing and securing cloud-based infrastructure in AWS in a highly regulated environment
Proficient in implementing, securing, and managing containerized and Kubernetes workloads
Experience collaborating with Product, Engineering, and DevOps teams
Proficiency in writing and reviewing Infrastructure as Code including CloudFormation and Terraform
Experience managing and supporting critical Developer infrastructure and secure SDLC
Understanding of Application Security principles, SAST, DAST, and web application vulnerabilities such as OWASP Top 10, their risk, and remediations
Able to manage and lead a small security team, with the responsibility to oversee the work of the team and manage the development of the engineers on the team

Opportunities & Benefits We Will Provide:

Help redefine small business banking
Competitive salary and equity in a fast-growing start-up
100% paid medical, dental, and vision benefits for employees and their domestic partners and dependents
100% paid life and disability insurance
Flexible vacation policy
401k plan

More About SmartBiz:

60% + of the loans funded by our banks are for women-owned, minority, or veteran businesses
Great Place to Work Certified, August 2022 - September 2024 USA
Committed to DEI&B - Mogul Diversity Badge, 2022
2021 Top Small Business Lending Platform Award by LendIt Fintech
American Banker's Best Places to Work in Financial Technology in 2017, 2020, 2021, 2022, and 2023
Rated "excellent" by TrustPilot review website
The company has raised $47 million in venture funding. Investors include Venrock, Investor Growth Capital, and First Round Capital.

SmartBiz Loans is an Equal Opportunity employer and proud to provide equal employment opportunity to all job seekers without regard to any status protected by applicable law.

California residents can learn more about how we use your information by visiting https://sites.google.com/view/smartbizloans-employment-ccpa