Senior Manager, Security Engineering

San Francisco

Applications have closed

Kandji

Kandji goes beyond Apple MDM solutions by connecting device security and device management. Welcome to Device Harmony.

View company page

About Kandji

Kandji is building the future of Apple Enterprise Management. The use of Apple devices in the enterprise is growing rapidly. Drawing on decades of experience in Apple IT, we saw a dire need for a modern Apple device management platform that could accommodate growing businesses and increasing regulatory demands. 

Kandji grew to hundreds of B2B customers within a few months of initial product launch in 2019, and secured a $100 million Series C in late 2021. Today, we have a 95% Customer Satisfaction rate and a rapidly growing community of customers, including names like Crunchbase, Belkin, Rackspace, Allbirds, FabFitFun, VSCO, and Turo.

Behind our business is a handful of the best investors in tech. Together, we are creating a new category of device management that can better serve modern businesses.


The Opportunity:

We are seeking a highly skilled and experienced Senior Manager of Security Engineering to join our growing Security and Trust organization. As the Senior Manager of Security Engineering, you will be responsible for leading and overseeing the design, implementation, and maintenance of robust security solutions within platform, data, and engineering environments. Your primary focus will be on protecting Kandji's infrastructure, applications, and data, ensuring the confidentiality, integrity, and availability of our systems.

The ideal candidate for this position will possess extensive experience in security engineering and architecture, particularly in cloud-native environments. Strong knowledge of cloud platforms, security frameworks, and standards is essential. Excellent leadership and communication skills are required to effectively collaborate with cross-functional teams and mentor security engineering professionals.

How you will make a difference


  • Leadership and Strategy:
  • Develop and execute a comprehensive security strategy aligned with the Kandji’s goals and objectives.
  • Provide strategic guidance and technical expertise to senior leadership and cross-functional teams on security best practices, industry trends, and emerging threats.
  • Collaborate with stakeholders to define and implement security policies, standards, and procedures that align with regulatory compliance requirements.
  • Security Architecture and Engineering:
  • Lead the design, development, and implementation of robust security architectures for cloud-native systems, ensuring scalability, resilience, and efficiency.
  • Conduct regular security assessments, threat modeling, and risk analysis to identify vulnerabilities and recommend appropriate mitigations.
  • Stay up-to-date with the latest security technologies, tools, and frameworks to continuously enhance the company's security posture.
  • Provide guidance and mentorship to the security engineering team, promoting professional development and knowledge sharing.
  • Collaborate with Platform and IT teams to integrate security controls into the continuous integration and deployment pipelines.
  • Incident Response and Risk Management:
  • Coordinate and lead incident response activities during security events, conducting root cause analysis, and implementing corrective actions to prevent future incidents.
  • Conduct regular security audits, vulnerability assessments, and penetration testing to identify potential risks and vulnerabilities in cloud-native systems.
  • Collaborate with cross-functional teams to implement risk mitigation strategies and ensure compliance with industry standards and regulatory requirements.
  • Team Management and Collaboration:
  • Build and lead a high-performing security engineering team, including hiring, training, and performance management.
  • Foster a collaborative and inclusive team culture, promoting knowledge sharing, innovation, and continuous improvement.
  • Collaborate with cross-functional teams, including software development, infrastructure, and compliance, to ensure security is integrated into all stages of the software development lifecycle.
  • Develop and maintain effective relationships with internal stakeholders, customers, and external partners to drive security initiatives and address security concerns.

  • Required to work on-site 3 days a week (Tuesday, Wednesday, Thursday). Managers may require additional on-site days.

We’d love to hear from you if you have

  • Bachelor's or master's degree in computer science, information security, or a related field.
  • Extensive experience in security engineering and architecture, preferably in a cloud-native environment.
  • Experience managing a team of security engineers in a cloud-native environmentStrong knowledge of cloud computing platforms (e.g., AWS, Azure, Google Cloud) and associated security controls.
  • In-depth understanding of security frameworks, standards, and regulations (e.g., NIST, ISO 27001, GDPR).Proven experience with incident response, vulnerability management, and risk assessment methodologies.
  • Excellent leadership and management skills with the ability to motivate and inspire a team.
  • Proficiency in security frameworks and standards (e.g., NIST, CIS, OWASP) and their application in cloud environments.
  • Demonstrated experience in threat modeling, risk assessment, and vulnerability management.
  • Hands-on experience with security tools and technologies, such as SIEM, IDS/IPS, WAF, DLP, and vulnerability scanners.
  • Excellent leadership and communication skills, with the ability to collaborate effectively with cross-functional teams.
  • Professional certifications in information security (e.g. CISSP, CISM, CCSP) are highly desirable.

Competencies

  • Values Differences
  • Communicates Effectively
  • Instills Trust
  • Builds Relationships
  • Building Talent
  • Drives Results
  • Technical Knowledge & Skills
  • Leading Teams
These requirements are for the strongest, ideal candidate.  Even if you do not outperform every bullet point, Kandji encourages you to apply.  We promote a diverse, equitable, and inclusive culture and recognize that even the strongest candidates won’t have all desired experiences and qualifications.

Benefits & Perks

 • Competitive salary
 • 100% individual and dependent medical + dental + vision coverage
 • 401(k) with a 4% company match
 • 20 days PTO + Kandji Wellness Week off the first week of July
 • 14 paid holidays per year
 • 10 health and wellness days per year
 • Equity for full-time employees
 • 12 weeks of paid leave for new parents
 • Cell phone & Internet stipend
 • Exciting opportunities for career growth
 • An outstanding, inclusive culture

We are excited to be serving a significant need for a fast-growing market, and are proud of the high-performing team we have brought together so far. If you’re someone who wants to engage in new, exciting projects that will challenge your skills in the best way possible, we would love to connect with you.

At Kandji we believe in fostering an inclusive environment in which employees feel encouraged to share their unique perspectives, leverage their strengths, and act authentically. We know that diverse teams are strong teams, and welcome those from all backgrounds and varying experiences.

Kandji is proud to be an equal opportunity employer committed to diversity and inclusion in the workplace. Qualified applicants will be considered for employment without regard to race, color, religion, national origin, age, sex, sexual orientation, gender identity, physical or mental disability, protected veteran or military status or any other status protected by applicable law.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Audits AWS Azure C CCSP CISM CISSP Cloud Compliance Computer Science GCP GDPR IDS Incident response IPS ISO 27001 NIST OWASP Pentesting Risk analysis Risk assessment Risk management SDLC Security assessment Security strategy SIEM Strategy Vulnerabilities Vulnerability management

Perks/benefits: 401(k) matching Career development Cell phone stipend Competitive pay Equity Health care Medical leave Startup environment Team events Wellness

Region: North America
Country: United States
Job stats:  4  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.