Senior Manager, Security Engineering
United States | Remote
Full Time Senior-level / Expert USD 180K - 250K
Upstart
About Upstart
Upstart is a leading AI lending marketplace partnering with banks and credit unions to expand access to affordable credit. By leveraging Upstart's AI marketplace, Upstart-powered banks and credit unions can have higher approval rates and lower loss rates across races, ages, and genders, while simultaneously delivering the exceptional digital-first lending experience their customers demand. More than two-thirds of Upstart loans are approved instantly and are fully automated.
Upstart is a digital-first company, which means that most Upstarters live and work anywhere in the United States. However, we also have offices in San Mateo, California; Columbus, Ohio; and Austin, Texas.
Most Upstarters join us because they connect with our mission of enabling access to effortless credit based on true risk. If you are energized by the impact you can make at Upstart, we’d love to hear from you!
The Team
Upstart's Information Security team has a mix of professionals with different areas of deep expertise - from Application Security, to Cloud Security, Incident Response, Detection Engineering, and more. The team is responsible for ensuring we have a good understanding of the security gaps in our environment, and works to mitigate unnecessary risk across the company.
As the Senior Manager of Security Engineering at Upstart, you will work with Upstart’s engineering and product management teams to ensure that our product platform is secure, safe and reliable. As a strategic leader, you will have direct responsibility for our product security and support Upstart’s growth while guarding the platform and its assets, our people and our processes. As one of the key resources on the Security team, you will have significant influence over the design of Upstart's Security program.
Position Location - This role is available in the following locations: Remote, San Mateo, Columbus , Austin.
Time Zone Requirements - This team operates across all US time zones.
Travel Requirements - This team has regular on-site collaboration sessions. These occur 3-4 days per quarter at one of our office locations. If you need to travel to make these meetups, Upstart will cover all travel related expenses.
How you’ll make an impact:
- Inform and oversee the development and execution of a comprehensive strategy for application security
- Ensure that security resources and practices align to business needs, priorities and requirements
- Evangelize the product security roadmap and seek alignment with stakeholders
- Manage and report on security engineering KPIs and metrics
- Help identify Upstart’s internal and external attack surface in a dynamic environment
- Work closely with our engineering and data science teams to securely design and implement new products and features
- Establish and mature the secure software development lifecycle
- Operate as an integral member of the engineering team and advocate for security best practices across the organization
What we’re looking for:
- Minimum requirements:
- Demonstrable track record as an influential leader, delivering security solutions with multiple stakeholder groups
- Extensive security engineering background, with expertise and knowledge in infrastructure security concepts, web application security, encryption, and penetration/vulnerability tools
- Understanding of Information Security policies, procedures, privacy rules & regulations
- Experience managing multiple and simultaneous, significant information security initiatives and programs
- Preferred qualifications:
- 10+ years of experience in a high-security environment and at least 5 years in a management capacity
- Leadership experience managing geographically distributed teams
- Certifications in IT or cybersecurity (e.g. CISSP, CISM, GSLC, OSCE)
- AWS, Kubernetes and CI/CD pipeline experience
- Contributions to the security industry (e.g. white papers, OSS projects, patents)
What you'll love:
- Competitive Compensation (base + bonus & equity)
- Comprehensive medical, dental, and vision coverage with Health Savings Account contributions from Upstart
- 401(k) with 100% company match up to $4,500 and immediate vesting and after-tax savings
- Employee Stock Purchase Plan (ESPP)
- Life and disability insurance
- Generous holiday, vacation, sick and safety leave
- Supportive parental, family care, and military leave programs
- Annual wellness, technology & ergonomic reimbursement programs
- Social activities including team events and onsites, all-company updates, employee resource groups (ERGs), and other interest groups such as book clubs, fitness, investing, and volunteering
- Catered lunches + snacks & drinks when working in offices
#LI-REMOTE
#LI-MidSenior
At Upstart, your base pay is one part of your total compensation package. The anticipated base salary for this position is expected to be within the below range. Your actual base pay will depend on your geographic location–with our “digital first” philosophy, Upstart uses compensation regions that vary depending on location. Individual pay is also determined by job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.
In addition, Upstart provides employees with target bonuses, equity compensation, and generous benefits packages (including medical, dental, vision, and 401k).
United States | Remote - Anticipated Base Salary Range$180,600—$250,000 USDUpstart is a proud Equal Opportunity Employer. We are dedicated to ensuring that underrepresented classes receive better access to affordable credit, and are just as committed to embracing diversity and inclusion in our hiring practices. We celebrate all cultures, backgrounds, perspectives, and experiences, and know that we can only become better together.
If you require reasonable accommodation in completing an application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please email candidate_accommodations@upstart.com
Tags: Application security AWS CI/CD CISM CISSP Cloud Encryption GSLC Incident response KPIs Kubernetes OSCE Privacy Product security SDLC Strategy
Perks/benefits: 401(k) matching Competitive pay Equity Fitness / gym Health care Insurance Medical leave Parental leave Salary bonus Startup environment Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs