Listing Description

Manager, Security Engineering (Foursquare Labs, Inc., New York, NY)

Lead the Security Team in all aspects, including technical deployments, risk mitigations, security incident management and resolution, and cross-functional collaboration. Lead efforts and implement solutions to keep user/customer data private and systems secure. Work with infrastructure and feature engineering teams to identify and mitigate risks to the business. Lead security training program and incident response activities. Maintain a risk assessment and reduction program by engaging in periodic testing. Use strong communication skills (written and verbal) to maintain and cultivate strong relationships with Privacy and Legal departments to maintain compliance with contractual and regulatory requirements. Mentor and cultivate the growth of engineers on the team and the wider organization and support their career paths at the company. Provide technical expertise in all areas of cybersecurity, including AWS cloud security, architectural design, corporate security and asset management, email security, encryption and other cryptographic measures, authentication and authorization, anti-malware, intrusion detection and prevention, and human factors security. Lead company-wide security advisories and implement measures following national and international security standards and best practices. Implement strategic security improvements as organizational and policy initiatives. Drive adoption of security processes for both engineering and non-engineering teams. Write and implement security-related code of conduct requirements and employee guidance. Keep up to date with global cybersecurity threats and drive company initiatives to reduce risk based on the cyber threat landscape. 5% (domestic) travel required for on and off-site team meetings. Position allows for telecommuting from anywhere in the U.S. Salary $223,018 - $245,000 per year.

Minimum Requirements: Bachelor’s degree or U.S. equivalent in Computer Science, Information Technology, Computer Engineering, Electrical Engineering, Industrial Engineering, Mechanical Engineering, or related field, plus 4 years of professional experience in cybersecurity including AWS cloud security, architectural design, email security, encryption, authentication and authorization, anti-malware, and intrusion detection and prevention.

Must also have experience with the following special skills: 4 years of professional experience adhering to secure coding practices and threat modeling; 4 years of professional experience writing code in Python or JavaScript; 4 years of professional experience using Linux and Unix operating systems; 3 years of professional experience developing serverless security applications in AWS multi-account environments using Infrastructure as Code; 3 years of professional experience performing administration of AWS cloud services and performing AWS cloud infrastructure setup and configuration, automated testing and deployment; 3 years of professional experience proposing, designing, planning, and implementing strategic and tactical security improvements (including device management, identity and access management); 3 years of professional experience triaging vulnerability reports, penetration testing findings, and vulnerability scanning results; 3 years of professional experience responding to security alerts using PagerDuty; 2 years of professional experience utilizing Web application architecture (including TCP/IP, HTTP, TLS, HTTP/2 and authentication schemes); 2 years of professional experience performing penetration testing and mitigation of real world attacks including DoS, XSS, CSRF, IDOR, dictionary attacks, and SQL injection; 1 year of professional experience responding to subpoenas and search warrant requests; and 1 year of professional experience monitoring email security (including DKIM, DMARC, and SPF, and phishing indicators).

Please submit resume online at: https://foursquare.com/careers or email resume to recruiting@foursquare.com. Please specify ad code APAP.