Job Title

Looking for an Information Security Manager with 10-12yrs of experience to secure our next-generation, cloud-native financial technology systems. This role offers the opportunity to work in a dynamic environment where your expertise will play a critical role working with and leading a skilled team across several domains of information security including security operations, identity access management, application security, infrastructure security and business continuity. AsK: Willingness to work outside of standard business hours during critical incidents, as well as managing an established 24x7x365 on-call security rotation.~10+ years of progressive experience in cybersecurity, with a significant portion focused on cloud-based security, including detection & response, application security, and cloud infrastructure security.Knowledge of defense-in-depth security tools and technologies such as Intrusion Detection and Prevention (IDS/IPS), Endpoint Detection and Response (EDR) solutions, Cloud Native Application Protection Platform (CNAPP), and Web Application Firewalls (WAF).Experience managing real-world cybersecurity incidents Knowledge of software security risks and threats (OWASP top 10). Experience with application security tools such as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA).Solid understanding of “secure by design” and “shift left” principles through Infrastructure as Code (Terraform).Experience working with software management CI/CD tools (Azure DevOps preferred)Experience working within Security Information and Event Management (SIEM) platforms.Proven understanding of common web-based attacks at runtime, such as those found OWASP Top 10, and how to respond/mitigate each from an operational standpoint.Understanding of public cloud (Azure/GCP) infrastructure and applications, and security polices, procedures, technology, and operations relevant to cloud.