Director of Security

San Francisco, CA /
Engineering /
Full Time
SentiLink combines data, human insights, and cutting edge machine learning techniques to combat point-of-application fraud in the U.S. financial system. SentiLink was listed by Business Insider as one of 47 Enterprise Startups to Bet Your Career On in 2020.

As Director of Security at SentiLink, you will develop, implement, and manage security operations, application and product security, threat planning and research, corporate security, security strategy, and compliance for SentiLink. You will work cross functionally to advocate for security and privacy across the company with the goal of instilling trust in SentiLink from our employees, partners, customers, and auditors.

Responsibilities

    • Work with the engineering team to establish security from the ground up by participating in design reviews and security testing, data flow modeling, formulating data loss prevention strategies, and understanding and contributing to infrastructure architecture
    • Monitor, analyze, and triage risks and threats on an ongoing basis
    • Develop and report on metrics to measure progress and effectiveness of the security program
    • Lead various white hat efforts against SentiLink’s product and corporate infrastructure - including phishing tests, penetration tests, and simulations for disaster recovery and business continuity
    • Ensure compliance with chosen standards (currently SOC 2 Type 2 and PCI-DSS) and applicable laws and regulations such that SentiLink can meet or exceed audits and other third party reviews at all times
    • Efficiently convey the concepts and details of SentiLink’s security programs to key stakeholders, including partners, customers, and auditors, in a charismatic manner
    • Train employees on security practices and evangelize best practices in an ongoing basis

Qualifications

    • 10+ years of security, compliance, and risk related experience within a complex, fast paced environment
    • Experience with setting information security policies and standards
    • Experience working with engineering and infrastructure teams to scope, enable, and implement the systems in a cloud environment
    • Experience creating and driving an overall security posture throughout an organization; must be able to identify current needs, anticipate future needs, articulate risk, and put together a balanced security plan based on business risk
    • Excellent communication skills, including the ability to convey complex security related concepts to technical and non-technical audiences alike
    • Familiarity working in financial services is a big plus

Perks

    • Work culture that gives you the time, space, and support required to build great things
    • Awesome co-workers and cool team activities (go-karting, scuba diving, blacksmithing, etc.)
    • Insurance (medical/dental/vision) for you and your dependents
    • 401k with matching
    • Unlimited PTO