Senior Manager, Threat and Vulnerability Management
Circle operates as a financial technology firm immersed in the emerging landscape of the internet of money, facilitating the seamless movement of value akin to digital data globally, swiftly, and cost-effectively compared to traditional settlement systems. This paradigm shift in the internet realm paves the way for new prospects in payments, commerce, and markets with the potential to enhance global economic well-being and inclusivity. The company's infrastructure, which includes USDC, a blockchain-based dollar, empowers businesses, institutions, and developers to leverage these advancements and benefit from this pivotal juncture in the convergence of money and technology.
Responsibilities:
Circle is seeking a dedicated Security Leader proficient in Threat and Vulnerability Management with a profound grasp of various Cloud-based Infrastructures and a fleet of Mac devices. As a member of the Security Engineering team, you will collaborate closely with the Engineering, Infrastructure, and IT teams responsible for administering our cloud operations, software development, and endpoint devices.
Key Responsibilities Include:
- Developing and advancing Circle's Threat and Vulnerability Management strategy, implementation, and operation
- Collaborating with the Engineering, Infrastructure, and IT teams to ensure secure software development, identifying, and remedying vulnerabilities while adhering to SLAs
- Integrating into the current Threat and Vulnerability Management program, conducting comprehensive risk assessments
- Recommending and validating security controls and enhancements spanning our infrastructure and enterprise stack
- Cultivating relationships with critical stakeholders, including cross-functional leaders and internal auditors
- Generating data-driven reports on technology risk for senior management
- Driving ongoing enhancements in the technology stack
Essential Qualifications:
- Demonstrated creativity and adaptability in collaborating with engineering teams
- Proficiency in Cloud vulnerability scanning solutions such as Wiz, Prisma Cloud, Qualys, or Amazon Inspector
- Hands-on technical experience in developing, deploying, and integrating vulnerability scanning solutions using technologies like Terraform, Github, Jira, Python, among others in the context of a mid to large Enterprise
- Strong program management background with experience in setting OKRs and developing KRIs
- Extensive Cloud Infrastructure expertise in AWS, with knowledge of GCP and/or Azure preferred
- In-depth understanding of containerization, orchestration, and cloud-scalable solutions
- Expertise in CI/CD within the SDLC process
- Proficiency with tools including Slack, Apple MacOS, and GSuite
- Familiarity with CVSS, EPSS, threat intelligence, and risk analysis
- Enthusiasm for automation and scalable, reproducible security practices
- Self-motivated with a problem-solving mindset, capable of working independently
- Proven ability to manage multiple priorities efficiently and exhibit sound judgment in prioritization
- Aptitude for influencing and promptly resolving issues to achieve organizational objectives
- Proficiency in designing and implementing easily testable and auditable controls
- Experience in the financial services or financial technology sectors preferred
Education and Experience:
- Advanced degree in computer science or relevant field highly preferred
- Demonstrated ability to collaborate effectively across teams particularly in high-pressure scenarios
- Familiarity with standards like ISO 27001/27002 and the NIST Cybersecurity Framework desirable
- Minimum 8 years of cybersecurity experience, with at least 4 years managing technical teams
- CCSP certification desired; familiarity with blockchain/web3 development a plus
Additional Details:
- Role eligible for day-one PERM sponsorship based on qualifications
- Circle is committed to offering transparent compensation packages based on various factors including experience, skill set, qualifications, and organizational needs
- Compensation package includes base pay, annual bonus target, equity, and benefits
- We maintain an equal opportunity environment valuing diversity across the organization
Note: Compensation details:
- Base Pay Range: $205,000 - $265,000
- Annual Bonus Target: 17.5%
- Benefits: Equity, Medical, Dental, Vision, 401(k), paid sick leave, and holidays
We uphold an equal opportunity employment policy and prioritize diversity in our workforce without discrimination based on various factors.
![Avatar](https://uploads.laborx.com/company_logo/z5_bOQ2nYHvvdVsJLnmtPKbsrbu8c13c.png)