Principal Security Analyst

Cardknox is looking for a Principal Security Analyst to join our development team and spearhead our cloud and application cybersecurity strategy. As a Principal Security Analyst, you will play a critical role in ensuring the security and integrity of our software, systems, and data, as well as maintaining compliance with relevant regulations. The ideal candidate is a strategic thinker with a deep understanding of cybersecurity best practices, risk management, and the ability to lead a team in a fast-paced, growth-focused environment.

We believe in empowering our employees to think outside the box and meet challenges head-on because, at Cardknox, everyone is a leader. Our employees take personal responsibility for ensuring our merchants and vendor partners have the tools and guidance they need to be successful. If you are driven to help us create next-generation payment solutions, eager to effect change, and passionate about providing excellent customer support, we want to talk to you!

Key Responsibilities:

• Cybersecurity Strategy: Improve and implement a comprehensive cybersecurity strategy that aligns with the company's business goals and objectives.
• Security Architecture Design: Design secure cloud architecture and application frameworks, considering factors like scalability and data protection. Implement security controls such as encryption, access controls and network segmentation.
• Risk Management: Identify, assess, and prioritize cybersecurity risks and vulnerabilities associated with cloud infrastructure and applications, and develop strategies to mitigate these risks effectively.
• Compliance: Ensure compliance with industry regulations, standards, and legal requirements related to cybersecurity, including PCI and GDPR.
• Security Policies and Procedures: Develop and maintain security policies, standards, and procedures to protect company assets and data.
• Incident Response: Develop and oversee the incident response plan for cloud and application security incidents, ensuring that the company is well-prepared to respond to and recover from cybersecurity incidents.
• Security Awareness: Promote a culture of cybersecurity awareness throughout the organization by providing training and educational programs.
• Vendor Security: Evaluate and manage third-party vendor security risks and relationships.
• Security Technology: Oversee the selection, implementation, and management of security technologies and tools, including firewalls, intrusion detection systems, and encryption.
• Security Metrics and Reporting: Establish key performance indicators (KPIs) and metrics to measure the effectiveness of cybersecurity efforts and report to executive management and the board.
• Budget Management: Develop and manage the cybersecurity budget, ensuring efficient allocation of resources.

Qualifications:

• A bachelor’s degree preferred
• At least seven (7) years of proven experience as a Security Analyst or in a senior leadership role within the cybersecurity field in the regulated payments industry.
• Must have experience working with AWS.
• In-depth knowledge of cybersecurity principles, best practices, and industry standards.
• Strong understanding of relevant regulations and compliance requirements.
• Excellent communication and interpersonal skills, with the ability to influence and collaborate at all levels of the organization.
• Experience in managing and leading cybersecurity teams.
• Relevant certifications (e.g., CISSP, CISM, CISA) preferred.
• Exceptional problem-solving and decision-making abilities.
• Proven track record of developing and implementing successful cybersecurity strategies.

What We Offer:

• Full benefits: medical, dental, vision, 401K plan.
• PTO, floating holidays, sick leave
• Opportunity to work with a dynamic and innovative team.
• Career advancement opportunities
• A supportive and inclusive workplace culture
• Exciting, fast-paced environment
• Work with cutting-edge technology.
• Employee referral rewards
• Remote workdays

If you are a strategic cybersecurity leader with a passion for protecting data and driving organizational growth, we encourage you to apply for this exciting opportunity. Join Cardknox and help us shape the future of secure software solutions.

About Cardknox:  

Cardknox, based in Howell, NJ, is a premier payments gateway solution and subsidiary company of Fidelity Payment Services. Cardknox is a developer-friendly payment gateway, that has created a marketplace revolution with flexible EMV solutions that can be integrated with POS systems using only a few lines of code. Cardknox serves thousands of customers across every major industry throughout the United States, UK and Canada.

Equal Employment Opportunity Policy

Cardknox provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.