Sr. Director, Security

Onbe, a fast-growing FinTech, bringing innovation to a rapidly growing global marketplace, stands for “on behalf.” Because that’s exactly how we work: on behalf of our clients, as their comprehensive payments partner. We transform the way payments are imagined — as an opportunity for innovation, a source of insight to customers, and a way to connect with partners around the globe!

Summary: The Senior Director of Security is a transformational leader responsible for crafting Onbe's information security strategy and ensuring the execution and oversight of services, policies, standards, and solutions. This role is pivotal in maintaining an enterprise-wide security program aimed at protecting the organization's information, assets, and personnel. The incumbent will devise and uphold policies, procedures, standards, and guidelines to safeguard the confidentiality, integrity, and availability of data. Additionally, they will manage a team in identifying threats and vulnerabilities, developing risk mitigation plans, and implementing controls to strengthen systems.

This role is a hybrid role that will work onsite 1-2 days per week at our Dallas, TX location. Occasional travel may be required as part of this position.  #LI-Hybrid

Responsibilities:

• Establish and maintain a robust cybersecurity governance framework aligned with industry best practices and regulatory requirements, ensuring effective oversight of cybersecurity risks and compliance obligations.
• Identify, evaluate, and prioritize cybersecurity risks, data breaches and vulnerabilities across the organization, implementing risk mitigation plans to minimize the impact of potential security incidents.
• Oversee the organization's vulnerability management program, including identifying, assessing, prioritizing, and remediating security vulnerabilities in systems and applications. Implement effective processes and tools for vulnerability scanning, assessment, and tracking.
• Lead dynamic testing tools and techniques and data protection, coordinating regular security testing with internal and external stakeholders to maintain effective security controls. Additionally, evaluate and recommend new security tools and technologies to enhance the organization's security posture.
• Collaborate with key stakeholders to integrate security practices into business processes and decision-making, championing the development of an enterprise security awareness culture to drive behavioral changes. Provide strategic guidance and direction to executive leadership on cybersecurity matters, risk mitigation strategies, and emerging threats.
• Build and lead a team of experts, establishing and maintaining standards, policies, procedures, and specifications to promote systems' security and uninterrupted operation.
• Drive the development of a long-term strategic roadmap for information security.
• Develop appropriate information security and risk management metrics and key performance indicators, providing regular reports to the CTO and other members of the executive team.
• Supervise Onbe's technical and physical security controls, including access control systems, video surveillance systems, and alarm panels.

Qualifications 

• Bachelor’s Degree in Computer Science, MIS, IT Security, or other IT discipline(s).
• CISSP, CISM, SSCP, GCIH or other industry standard certifications and credentials
• 7+ years in a security leadership role.
• 15+ years working in a security-focused role in technology.
• Experience overseeing PCI, SOC2, and ISO controls and frameworks.
• Experience securing cloud infrastructure (AWS/Azure)
• Experience leading with a Security Operations Center (SOC).
• Experience of responding rapidly to significant cyber security incidents, responding to new risks and emerging priorities and utilizing crisis management skills and approaches to lead and organize action while remaining resilient under pressure.
•  Full understanding of risk management and organizational governance approaches, with a proven ability to apply these concepts to the business.
• Ability to demonstrate and apply knowledge of data protection regulation and laws to consulting projects, such as the EU-GDPR, CCPA/CPRA, GLBA, and CDPA

The base salary range for this position is between $159,570.00 to $186,165.00, with eligibility for an annual bonus. The actual base salary offered depends on a variety of factors, including but not limited to the qualifications of the individual applicant for the position, years of relevant experience, specific and unique skills, level of education attained, certifications or other professional licenses held, business needs, and market demand. Our competitive benefits includes medical, dental, vision, wellness, 401(k) matching, open time off, generous parental leave, and more! Our job titles may span more than one career level. All candidates are encouraged to apply.

At Onbe, a diverse group of people, ideas, and perspectives are key to achieving phenomenal things. For over 25 years, our focus has remained on building a culture of openness and ingenuity, where employees come together to innovate and build disbursement solutions that make the lives of our clients and their consumers and workforces easier and better. Our definition of success includes celebrating differences and affirming belonging. To that end, we ask employees to come to Onbe as they are and contribute their diverse perspectives, identities, and experiences.

We believe that the recruiting phase is only the very beginning of diversity and inclusion. At Onbe, we’re constantly evolving the way we celebrate diversity every day and in everything we do. With several internal committees that are dedicated to mental and physical wellness, diversity, inclusion, and community outreach, we are committed to making a culture that is inclusive to all.

Onbe is proud to be an equal opportunity employer. We seek out ways to create a mindful workforce that embraces diversity and celebrates a culture of inclusion. We do not discriminate against employees or job applicants on the basis of race, color, ancestry, national origin, sex (including pregnancy), gender identity, sexual orientation, marital or family status, religion, age, disability, genetic information or military service. Our equal opportunity policy applies to all decisions of employment including hiring, placement, promotion or advancement, termination, layoff, recall, transfer, compensation, training and leaves of absence