Director, Information Security

Who is Credible?

We are a marketplace where users can compare personalized, prequalified rates and quotes from multiple lenders and carriers, for student loans, mortgages, personal loans and insurance. 

We’re challenging the status quo by giving power to the consumer. We believe in a world where ‘ethical’, ‘lending’, and ‘insurance’ can coexist, so we set out to build innovative platforms that actually work for customers. Our mission is to help people find the best loan or insurance policy possible. 

We believe researching and buying loans or insurance shouldn’t be confusing or complex, so we’ve focused on simplicity. We’ve created the only unbiased loan and insurance buying process out there, which makes finding options straightforward and clear. 

About the Role:

We are looking for a hands-on experienced information security leader that will bring vision to the role and who has a strong security engineering background and experience partnering with other departments to develop secure practices. Ideally, you will have expertise running a team of security professionals, broad expertise in security standards, practices, tools and technologies applicable to online financial services that have extensive integrations with third party systems.

Responsibilities:

• Manage Credible’s security team - includes day-to-day management, project management, cross-functional coordination, hiring, mentoring and growth of staff
• Be an evangelist for security and promote a security conscious mindset throughout Credible
• Own, evolve and drive Credible’s security roadmap.  Some key areas include:
• Work with Compliance to improve and maintain the company's information security policies and guidelines
• Drive the security team to engineer and implement practices and tools to ensure that security policies are followed during product development
• Analyze, design, implement and manage information security services, including various services in the AWS cloud environment
• Drive or perform periodic internal security audits, ensuring the company systems and infrastructure are up to date with latest security updates
• Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks
• Work with product and engineering to improve the security of the credible.com user experience
• Work to improve security over time, identifying security risks and proposing new techniques and solutions to mitigate them

Education and Experience:

• Bachelor’s or Master’s degree in Computer Science or related field
• At least 7 years of experience in information security with at least 2 years managing a team
• Hands on experience in security systems and tools, including static/dynamic code analysis, firewalls, IDS, WAF, anti-virus software, authentication systems, log management, Zero Trust, Passwordless Authentication, PKI, Kubernetes, Cloud Security Architecture
• Expert level knowledge of:
• Web application security areas such as Authentication/Authorization, data validation, encryption, logging, SDLC, threat modeling
• Amazon Web Services (AWS) security services and technologies
• Web application abuse and fraud
• Experience with security compliance frameworks such as NIST, ISO27001, SOC type 2 or others
• Solid understanding of Networking with physical and cloud technologies
• Problem solving skills and ability to work under pressure
• Self-starter with strong interpersonal, communication, and collaboration skills

Why work at Credible?

We combine the intelligence, expertise and confidence of a financial advisor with the approachability and honesty of a friend. In other words, we’re the friend you always wish you had in finance.

We are optimistic, challengers, trustworthy, clever, and smart. We are open and transparent. We strive to act as advisors by being friendly, objective, and open in our communication. We use language that is intelligent yet approachable. When appropriate, we’ll drop in a bit of wit to position ourselves as a fresh, reliable voice in the financial world.

Our benefits: We offer competitive compensation, generous wellness benefits, growth opportunities, team lunches, and a flexible vacation policy. But mainly, you want to work at Credible because you believe in our mission and want to have a major role in delivering on it! We look forward to getting to know you.   We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We will consider for employment qualified applicants with criminal histories consistent with applicable law.