Director, Application Security
New York City; Portland, Oregon; Chicago, Illinois; Los Angeles, California; San Francisco, California; Remote
Gemini
Gemini makes crypto simple. Find, Trade and Buy over 80 coins including bitcoin on the best cryptocurrency platform. Start trading crypto here.Empower the Individual Through Crypto
Gemini is a crypto exchange and custodian that allows customers to buy, sell, store, and earn more than 30 cryptocurrencies like bitcoin, bitcoin cash, ether, litecoin, and Zcash. Gemini is a New York trust company that is subject to the capital reserve requirements, cybersecurity requirements, and banking compliance standards set forth by the New York State Department of Financial Services and the New York Banking Law. Gemini was founded in 2014 by twin brothers Cameron and Tyler Winklevoss to empower the individual through crypto.
Crypto is about giving you greater choice, independence, and opportunity. We are here to help you on your journey. We build crypto products that are simple, elegant, and secure. Whether you are an individual or an institution, we want to help you buy, sell, and store your bitcoin and cryptocurrency. Crypto is not just a technology, it's a movement.
At Gemini, our mission is to empower the individual and that includes giving our employees flexibility of choice — our Office Optional Policy allows employees to choose to work from one of our physical locations or from home.
Select roles that are location-specific will still be eligible for flexible schedules.
The Department: Information Security
In the emerging industry of digital assets, there is nothing more important than trust (which is why Gemini’s very first hires were Security experts). The Gemini Security team forms the backbone of all that we do and is as diverse as the number of challenges we tackle in the crypto space. From security architecture and engineering to maintenance of cold storage systems and data centers to cybersecurity and litigation support, our team ensures that our customers, clients, and employees are safe, secure, and supported.
The Role: Director of Application Security
As with many high-growth startups, Gemini faces a wide range of challenges within the application security domain. We’re seeking a Director of Application Security to lead our exceptional team of application security professionals (both managers and ICs) with a focus on strategy and maturity in tailoring our software security assurance program.
This role will report to the VP of Information Security, and will work closely with Gemini technology command pilots to ensure security is built into our products from the ground up.
Responsibilities:
- Design, implement, and evolve a shared security responsibility model for development executive leadership which includes a -build security in- approach to product development.
- Drive performance for your team by holding them accountable to deadlines and targets
- Make hiring plans and continue to build out the Application Security team (hiring, retaining, and developing individuals across various levels).
- Give frequent feedback and coaching to your team members. Coordinate with stakeholders from around the company to gain a full understanding of your team’s performance
- Provide a diverse, equitable, and inclusive environment for your team to execute on its priorities and evolve its capabilities over time.
- Communicate with senior leaders to individual contributors. This includes working with technical and non-technical audiences.
- Adapt the team’s plans and goals to changing realities in a fast-moving industry
- Effectively resolve ambiguity, helping the team to analyze complex requirements and break down features and initiatives into tasks
- Own the team’s output, taking responsibility for everyone’s performance
- Quickly ramp up on relevant industry and competitive trends
Minimum Qualifications:
- You have 10+ years of experience in application security
- You have 5+ years of managing teams
- A strong understanding of application security challenges, strategy, and maturity frameworks (e.g. BSIMM, SAMM) and compliance control mapping (e.g. Adobe CCF).
- Strong knowledge of building security into DevOps practices (DevSecOps, RuggedDevOps).
- You have experience establishing successful partnerships with key stakeholders such as engineering directors, product managers, and business owners.
It Pays to Work Here
We take a holistic approach to compensation at Gemini, which includes:
- Competitive Compensation and Profit-Sharing Equity
- Flexible vacation policy
- Retirement Plan Matching
- Generous Parental leave
- Comprehensive health plans
- Training and professional development
At Gemini, we strive to build diverse teams that reflect the people we want to empower through our products, and we are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status. Equal Opportunity is the Law, and Gemini is proud to be an equal opportunity workplace and affirmative action employer. If you have a specific need that requires accommodation, please let a member of the People Team know.
#LI-AH1
#LI-REMOTE
Tags: Application security Banking BSIMM Compliance Crypto DevOps DevSecOps ICS SAMM Strategy
Perks/benefits: Career development Competitive pay Equity Flex hours Flex vacation Home office stipend Parental leave Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open Kubernetes-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs