Senior Manager, Application Security & Engineering
Dallas, TX
Apex Fintech Solutions (AFS) powers innovation and the future of digital wealth management by processing millions of transactions daily, to simplify, automate, and facilitate access to financial markets for all. Our robust suite of fintech solutions enables us to support clients such as Stash, Betterment, SoFi, and WeBull, and more than 20 million of our clients' customers.
Collectively, AFS creates an environment in which companies with the biggest ideas in fintech are empowered to change the world. We are based in Dallas, TX and also have offices in Austin, New York, Chicago, Los Angeles, Portland, and Belfast.
If you are seeking a fast-paced and entrepreneurial environment where you'll have the opportunity to make an immediate impact, and you have the guts to change everything, this is the place for you.
AFS has received a number of prestigious industry awards, including:
- 2021, 2020, 2019, and 2018 Best Wealth Management Company - presented by Fintech Breakthrough Awards
- 2021 Most Innovative Companies - presented by Fast Company
- 2021 Best API & Best Trading Technology - presented by Global Fintech Awards
The Senior Manager, Application Security Architecture & Engineering will report to our CISO and will be responsible for our Information Security Architecture & Engineering Team functions including, but not limited to, security architecture and engineering, application security, cloud security, security strategy and building security control requirements.
This leadership position requires an adaptable person, comfortable and apt at development of strategy, vision and personnel management as well as tactical problem-solving, and hands-on troubleshooting as needed. The Sr. Manager will lead the strategic development and integration of security controls in application/product development and the various cloud instances managed by Apex. You will also manage the Security Engineering team in the development of secure solutions by working with technical leads and business units to understand the relationship between the on-premises infrastructure and the cloud technology stacks. You will also be responsible for defining and executing AFS strategy for secured cloud services delivery and overall security architecture requirements.
Responsibilities
- Embedding security seamlessly into the development lifecycle of technology systems, systems, applications, and products.
- Develop security architecture, design, and coding standards across the organizations infrastructure to promote a standardized set of security requirements, aligning with internal policies and meeting external compliance requirements
- Provide solutions security-related coaching and mentoring to elevate security expertise of development teams
- Provide day-to-day oversight of direct report(s), offer guidance and direction where necessary, assist in issue resolution, balance competing interests, and escalate significant concerns as appropriate
- Collaborate with key stakeholders (e.g., IT infrastructure, SRE, Software and Application Architects, IT Operations, Product Management, Engineering etc.) to engineer technology solutions and processes that incorporate sound security design and governance principles.
- Participate in the design, lifecycle management, and total cost of ownership of security appliances, applications, and infrastructure services
- Influence standards and platforms for future application development.
- Mentor team members in the understanding and deployment of cloud, application, and crypto security solutions.
- Cybersecurity Architecture: Develop and align the firm on a standards-based cyber architecture and portfolio of capabilities
- Data Security & Privacy: Deliver global standards and technologies in use for securing AFS information and that of our clients
- Application Security: Instill security by design standards, tools and best practices in our software and product development lifecycles.
- Infrastructure and Network Security: Ensure the security of processes, tools, solutions and data both within and outside of our network boundaries
- Identity Architecture: Incorporate Access and Authorization technologies into our systems and alignment with overall Identity and Access Management principles.
- Engage and influence stakeholders, internal partners and peers
Required Qualifications
- Bachelor’s degree or equivalent work experience
- 10+ years of progressively responsible professional experience in information security with supervisory experience including ability to effectively plan, lead and organize teams and programs.
- Experience with secure coding practices and security scanning technologies
- Problem-solver with excellent communication skills, a deep technical understanding of security engineering best practices.
- Extensive experience in secure architecture, system design and engineering
- Prior experience as a security architect and with implementing DevSecOps
- Expertise in the design, development, implementation, and maintenance of enterprise application and security architecture across multiple Cloud environments such as Azure, GCP, and/or AWS
- Experience in using industry standards, such as ISO/IEC 27001, NIST, Cloud Controls Matrix; experience working with hybrid information security frameworks is a plus.
- Experience with API Security, Microservices, Containers and Kubernetes preferred
Core Characteristics
- Organization and people leader - previously built and led senior technical staff, especially architects
- People builder – mentoring and coaching of staff
- Strategic thinker - understands business demand & constraints; synthesize problem statements from observed challenges, and finds an organizational solution
- Passionate technologist - explores new & emerging trends; finds and understands potential business value in a technology, and can bring that to the organization
- Understands how to navigate in a large enterprise - obtain executive support, and rally people behind a cause
- Change agent - challenges status quo; leads through business and technology transformations
#IT #mid-senior #full-time
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Application security APT AWS Azure CISO Cloud Compliance Crypto DevSecOps FinTech GCP Governance IAM IT infrastructure Kubernetes Microservices Network security NIST Privacy Security strategy Strategy
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Product Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Security Operations Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Principal Security Engineer jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Cybersecurity Specialist jobs
- Open Chief Information Security Officer jobs
- Open Senior Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Ingénieur DevSecops H/F jobs
- Open Senior Cyber Security Specialist jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open CISM-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CI/CD-related jobs
- Open IPS-related jobs