Senior Manager, Information (Cyber) Security (REMOTE-US)
New York City
Zip
Zip is a leading Buy Now, Pay Later (BNPL) company providing fair and seamless solutions that simplify how people pay.So whether you’re fully remote, mostly in the office or a mix of the two, you’ll be empowered to do whatever brings out your best.
About us
We are Zip, a global Buy Now, Pay Later company providing fair and seamless solutions that simplify how millions of people pay. Our journey began in Australia, has taken us to 14 countries (so far) - and we’re just getting started.
We exist to create a world where people can live fearlessly today, knowing they’re in control of tomorrow. Focused on product innovation that puts people at the centre, we put the financial well-being of our customers and merchant partners at the heart of everything that we do.
About the Team / Role We are seeking a Senior Manager of Information Security for Zip’s global security organization. This position is a technical managerial position, in which the ideal person will be able to function from not only a people, process, and planning perspective but also be a key contributor to security architecture, engineering, and technology decisions.
This role will also hold the responsibility of being a key leader for security related projects and compliance decisions for Zip. As the Senior Manager of Information Security, you will be looked to as a leader in defining, communicating, planning, and executing on all company and business unit goals in the security and compliance space. You will report directly to Zip’s Global CISO and be a representative to Zip business units around the world as a subject matter expert on all things relating to security but with a heightened focus on the security of Zip’s production systems, incident and security operations, and M&A activities. To be successful as a Senior Manager of Information Security, you should have exceptional leadership, communication, and project management skills, with a belief in developing the skills and talents of others. Ideal candidates will have experience in identifying and navigating organizational changes, a keen interest in international trends in security and leadership, and above-average emotional intelligence
Responsibilities
- Drive application and network security activities for Zip
- Manage a team of highly skilled security engineers
- Collaborate with multiple security and engineering teams within Zip to provide seamless support to securely enable business functions
- Influence peers and leaders with the goal of creating and maturing security programs that are aligned with Zip’s broader plans as a company
- Evaluate, design, deploy, support, and monitor information security systems
- Identify security exposures and develop mitigation plans
- Build and execute on project roadmaps
- Plan and run security awareness exercises and teach secure behavior and methods
- Lead and manage security incident response activities and forensic investigations
- Lead the implementation of best-practice security procedures, standards, and guidelines
- Support Zip in developing and maturing the application security program
- Represent Zip in compliance activities such as external audits from merchants, regulatory compliance projects, and overall information security reviews
- Thoughtfully build, retain, and scale a diverse, cross-functional, distributed security team to meet the needs of the business
- Provide technical vision and strategy for this space. Design and lead technical roadmaps and take full responsibility for planning, overall execution, and success of complex technical projects
- Develop and grow talent through effective mentoring, coaching, and retention strategies
- Participate in our blameless culture which focuses on teamwork and collaboration (we fail together, and we succeed together!)
Qualifications
- Bachelor's degree in Computer Science, a related technical field, or equivalent practical experience.
- 10+ years of professional experience, with a minimum of 3 years in an engineering leadership role supporting highly scalable technology platforms
- Experience managing large, distributed teams and stakeholders at all levels
- Experience working with and managing application security programs in an agile environment
- Ability to explain complex and technical concepts to non-technical audiences in an engaging manner
- Ability to listen well, to see multiple perspectives, and to be a cohesive team-builder
Differentiating Experiences and Skills
- Experience with financial industry security governance, including PCI DSS, SOC2, ISO 27K and state regulations
- CISSP, CISM, CISA, Security+ or comparable Information Security Assurance certification
- Experience as a hands-on software engineer with expertise in security related programming languages
- Experience with global security and privacy programs
- Experience securing AWS and Azure environments
We’re proud to be a values-led business. They guide us in everything we do - how we work together and create game-changing experiences for our customers and fellow Zipsters.
If you only meet some of the requirements for this role, that's okay. We value a diverse range of backgrounds and ideas and believe this is fundamental for our future success. So, if you have the curiosity to learn and the willingness to teach what you know, we'd love to hear from you.
We pride ourselves on creating an inclusive workplace that provides equal opportunities to all persons regardless of their age, cultural background, sexual orientation, gender identity and expression, disability, veteran status, or anything else.
What’s in it for you?
We offer a variety of perks and benefits to support you at both work and home. Here’s a taste of what you can expect!
● Flexible working culture● Share incentive programs● 20 days PTO every year● Generous paid parental leave● Leading family support policies● 100% employer covered insurance● Beautiful Midtown office with a casual dress code● Learning and wellness subscription stipend● Company-sponsored 401k match● Remote working allowance
Join us on our mission to be the first payment choice, everywhere and every day.
Tags: Agile Application security Audits AWS Azure CISA CISM CISSP Compliance Computer Science Governance Incident response ISO 27000 Network security PCI DSS Privacy SOC 2 Strategy
Perks/benefits: 401(k) matching Career development Flex hours Flex vacation Home office stipend Insurance Parental leave Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs