Security & Threat Operations Manager
United States (Remote)
Full Time Senior-level / Expert USD 200K - 250K
One’s mission is simple - to help customers achieve financial progress. We’re doing this by creating simple solutions to help our customers save, spend, borrow, and grow their money – all in one place.
The U.S. consumer today deserves better. Millions of Americans today can’t access credit, build savings or wealth, and are left to manage their financial lives through multiple disconnected apps. Almost a quarter of U.S. adults are unbanked or underbanked and roughly 80% of fintech users rely on multiple accounts to manage their finances.
What makes us unique? We are backed by a preeminent fintech investor (Ribbit) and the world’s largest retailer (Walmart), maintain the speed and independence of a startup, and employ a strong (and growing) collection of world-class talent.
There’s never been a better moment to build a business that helps people achieve financial progress. Come build with us!
The roleWe are seeking an experienced and proactive Security and Threat Operations Manager to lead our security operations team. As a key player, you will be responsible for managing critical functions related to vulnerability management, security monitoring, and incident response, while growing threat hunting, threat intelligence, and other modern threat operations practices. You will have both a leadership role in growing the Security & Threat Operations team and defining the team’s roadmap, as well as a hands-on role maturing existing security capabilities and building new red and purple team practices.
This role is responsible for:
Leading and mentoring a team of security analysts and engineers across the United States and India while fostering a collaborative and high-performance culture.
Setting performance goals, conducting performance evaluations, and providing ongoing feedback.
Ensuring the timely and complete resolution of information security incidents, including targeted threats and internal incidents.
Maturing the incident response process and associated playbooks and technical capabilities, throughout all stages of the lifecycle: triage, investigation, containment, eradication, and recovery.
Managing and expanding the vulnerability management program.
Building a threat hunting practice which effectively interoperates with blue team processes.
Leading the design and implementation of security monitoring solutions, including a modern cloud-based SOAR platform.
Developing and enhancing detection rules, use cases, and playbooks which address the latest threats to the company’s technology stacks and business context-specific monitoring scenarios.
Building and operating an advanced threat intelligence program to stay ahead of emerging threats.
Collaborating with threat hunters and analysts to identify suspicious activities
8+ years of experience in cybersecurity roles, with a focus on incident response and detection engineering.
2+ years of team management experience.
Deep knowledge of security monitoring and incident response in AWS environments.
Experience building security detections for modern technology stacks and application architectures, such as Kubernetes, applications’ use of token-based authentication protocols, and AWS.
Strong knowledge of security monitoring tools, SIEM platforms, and threat intelligence.
Certifications such as GIAC Security Operations Certified (GSOC), GIAC Certified Incident Handler (GCIH), or OSCP are desirable.
Excellent communication and leadership skills.
The estimated annual base salary for this position ranges from $200,000 to $250,000. Pay is generally based upon the level, complexity, responsibility, and job duties / requirements of the specific position. We then source candidates with the requisite skills, expertise, education, training, and experience. If you are selected for an interview, please feel welcome to speak to a Talent Partner about our compensation philosophy and other available benefits.
What it’s like working @ OneCompetitive cash
Benefits effective on day one
Early access to a high potential, high growth fintech
Generous stock option packages in an early-stage startup
Remote friendly (anywhere in the US) and office friendly - you pick the schedule
Flexible time off programs - vacation, sick, paid parental leave, and paid caregiver leave
401(k) plan with match
In order to thoughtfully scale the company and avoid downstream inequities, we’ve adopted a flat titling structure at One. Though we may occasionally post a role externally with a prefix such as “Senior” to reflect the external level of the position, we do not use prefixes in titles like that internally unless in a position which manages a team. Internal titles typically include your specific functional responsibility, such as engineering, product management or sales, and often include additional descriptors to ensure clarity of role and placement within our organization (i.e. “Engineer, Platform”, “Sales, Business Development” or “Manager, Talent”). Employees are paid commensurate with their experience and the internal level within One.
Inclusion & BelongingTo build technology and products that are used and loved by people and solve real-world problems, we need to build a team with many different perspectives and experiences. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We encourage candidates from all backgrounds to apply. Applicants in need of special assistance or accommodation during the interview process or in accessing our website may contact us at talent@one.app.
Tags: AWS Blue team Cloud FinTech GCIH GIAC Incident response Kubernetes Monitoring OSCP SIEM SOAR Threat intelligence Vulnerability management
Perks/benefits: 401(k) matching Career development Competitive pay Equity Flex hours Flex vacation Parental leave Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs