Manager Security Engineering @ Fare Uncle LLC

Primary Responsibilities:

• Leadership and Team Development:Provide guidance, direction, and mentorship to the security engineering team, fostering a collaborative culture of excellence and continuous development.

• Design and Implementation of Security Solutions:Architect and deploy security systems to protect cloud environments, on-prem infrastructure, and applications, ensuring alignment with industry standards and regulatory requirements.

• Vulnerability Management:Identify, assess, and remediate risks across systems, platforms, and applications, ensuring vulnerabilities are addressed effectively and documented for future prevention.

• Threat Analysis and Incident Response:Lead investigations of security incidents, coordinating resolution efforts with internal teams and externalpartiesas necessary. Promote preparedness by analyzing threats and developing processes to minimize risks.

• Secure Application Development:Partner with engineering and DevOps teams to integrate secure coding practices and embed security checks into software development lifecycles and CI/CD pipelines.

• Compliance and Standards Alignment:Maintaincompliance with security and privacy standards, including PCI DSS, ISO 27001, SOC 2, GDPR, FedRAMP, and other relevant frameworks.

• Automation and Optimization:Optimizeand automate security processes across the organization to improve response times, reduce redundancies, and support scalability.

• Collaboration Across Departments:Coordinate with stakeholders across departmentsincluding IT, legal, and business unitsto educate them on security principles and ensure secure practices are consistently implemented.

• Communication with Leadership:Regularly report on the organization's security posture, project execution, and threat landscape to senior leadership and key stakeholders.

Knowledge, Skills, and Abilities:

• Expertisein designing and implementing enterprise security architectures, particularly for cloud platforms (AWS, Azure, GCP), containers (Docker/Kubernetes), and hybrid systems.

• Extensive knowledge of encryption, authentication, network security, vulnerability management, identity and access management (IAM), endpoint protection, and SIEM platforms.

• Strong knowledge of regulatory compliance frameworks and security standards, including PCI DSS, NIST 800-53, ISO 27001, GDPR, SOC 2, and FedRAMP.

• Ability toidentify, analyze, and mitigate threats, vulnerabilities, and risks across complex systems and applications.

• Proficiencyin secure software development and familiarity with integrating security into CI/CD pipelines.

• Experience with automation tools and governance solutions within cloud environments to improve operational efficiency.

• Strong leadership and interpersonal skills, with the ability to effectively guide a team and communicate technical concepts to non-technical audiences.

• Excellent problem-solving skills and decision-making abilities in high-pressure scenarios, such as security incidents.

Qualifications:

• Bachelors degree in Computer Science, Information Technology, Cybersecurity, or a related field (Mastersdegree preferred).

• Minimum of 7+ years of experience in a cybersecurity or security engineering role, with at least 3+ years in a leadership capacity.

• Relevant technical certifications such as CISSP, CISM, CEH, or OSCP are strongly preferred.

• Proventrack recordof successfully delivering security solutions,maintainingcompliance, and leading teams in a fast-paced environment.