Talent.com
Sr. Director, Cybersecurity

Sr. Director, Cybersecurity

BugcrowdSan Francisco, CA, United States
job_description.job_card.variable_days_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

We are Bugcrowd. Since 2012, we’ve been empowering organizations to take back control and stay ahead of threat actors by uniting the collective ingenuity and expertise of our customers and trusted alliance of elite hackers, with our patented data and AI-powered Security Knowledge Platform.

We specifically seek a hands-on, technical security leader. You bring experience building security monitoring, reference architectures, deploying tools, integrating platforms, assessing modern cloud-native applications and infrastructure - and leading teams executing that mission successfully.

Program Leadership

  • Define the Cyber Security Strategy for Bugcrowd and identify areas of improvements to the threat landscape, internal risk tolerance objectives, and / or compliance objectives.
  • Ensure the technical aspects of vendor acquisitions and tools are safe for Bugcrowd’s use, in unison with the IT and compliance teams.
  • Assess corporate technology systems, determine strategy for changes, enhancement and improvements; recommend and implement the same, from the perspective of cyber security.
  • Carry out and fulfill the cyber security strategy of bugcrowd, proactively improving the security posture with time.
  • Work with GRC to assist in designing, develop, implement and coordinate areas of policies and procedures for compliance with SOC-2, NIST 800-53v4, ISO27001,ISO27018, and FedRAMP.
  • Represent Bugcrowd in the internal and external audits for SOC-2, ISO27001, and ISO27018.

AppSec and Product Security Leadership

  • Manage Bugcrowd’s bug bounty program, ensuring that clients have a standard to aspire to, when running their own bounty programs.
  • Analyze new features prior to development or launch, to ensure the security measures in place are sufficient for the project.
  • Manage the access controls for Bugcrowd’s production codebase.
  • Approve and analyze authorisation requests to production data.
  • Perform regular audits of Bugcrowd’s cloud infrastructure, alongside helping with architecture of any cloud solutions from the security perspective.
  • Manage and audit all vulnerability scans for all of Bugcrowd’s systems.
  • Proactively test and identify issues within Pull Requests and production to find issues.
  • Automate security tasks to proactively identify and fix security issues within Bugcrowd.
  • Perform configuration management upon all Bugcrowd systems.
  • Perform code audits on new features, patches, etc.

    • Security Operations, Detection and Incident Response

  • Perform IR for all parts of the business and perform root cause analysis upon the incidents to properly mitigate them in the future.
  • Perform threat intelligence to proactively find issues relating to Bugcrowd’s security posture.
  • Plan implementation of security controls, in unison with the required teams.
  • Monitor the security controls for all of Bugcrowd’s systems and build a team to do the same.
  • Perform malware analysis on any potential malware, should the forensic requirements arise during IR.
  • Coordinating red team engagements against Bugcrowd and implementing security controls to mitigate any issues found.
  • Develop security awareness materials for all roles within the Bugcrowd organisation.
  • Aid the Legal team with GDPR related issues from researchers and programs.

    • Management and Team Leadership

  • Perform table top exercises within the Bugcrowd organization to ensure the organization is prepared for future threats.
  • Aid with business continuity testing, since the internal cybersecurity team plays a major role within the process.
  • Present findings and observations to the ISMS committee.
  • Portray and represent the technical controls and engineering areas within the ISMS committee.

    • Supervisory Responsibility

  • Lead and manage a team of internal cybersecurity professionals.
  • Train and grow the security team with objectives that are defined, measured and monitored.
  • Support Security Leadership with delegated responsibilities, as requested.
  • Take a proactive, collaborative and respected leadership role in the Company to galvanize support of a robust, efficient and secure technology organization.
  • Manage a team of hungry and fast growing security professionals with both strong attack and defense skills.

    • Knowledge, Skills, and Abilities

  • Proven work experience leading Cyber Security in a startup and growing with the organization.
  • Excellent knowledge of technical security controls, including cloud, web application, infrastructure, IT, and compliance.
  • Experience in data governance, data architecture, data flow and system architecture to optimize the same.
  • Hands-on experience with penetration testing, red teaming, and security patch bypass testing.
  • Ability to work independently and must have strong organizational and communication skills.
  • Systems / Software knowledge : Mac OS, Python, JavaScript, Ruby, Golang, Java, Kotlin, Postgres, GSuite, Cisco Umbrella, Netskope, Crowdstrike, GitHub, AWS, Heroku, Cloudflare, DataDog, JAMF, etc.
  • Familiarity with Jira is a plus.
  • Experience related to and assistance with ISO27001, ISO27018, NIST 800-53v4, and SOC2 audits is compulsory.
  • Degree in Computer Science, cyber security, MIS or equivalent experience desirable but not required.
  • Experience in cyber security with demonstrations of responsibility and technical excellence.
  • Must be eager to work hard, to learn many new skills, solve problems, and integrate tightly with the rest of the team.
  • Willingness to support a global organization with limited staff via off hours activity while maintaining a healthy work-life balance.

    • Working Conditions and Physical Requirements

  • The ideal candidate must be able to complete all physical requirements of the job with or without reasonable accommodation.
  • Sitting and / or standing - Must be able to remain in a stationary position 50% of the time.
  • Carrying and / or lifting - Must be able to carry / move laptop as needed throughout the work day.
  • Environment - remote, work-from-home 100% of the time.

    • ADA Statement

    Bugcrowd is committed to the full inclusion of all qualified individuals. In keeping with our commitment, Bugcrowd will take the steps to assure that people with disabilities are provided reasonable accommodations.

    Pay Range Disclosure

    The national estimate for the current base range for the position of Sr. Director, Cybersecurity is : $204,800 -$256,000.

    Culture

    At Bugcrowd, we understand that diversity in the workplace is vital to a company’s success and growth. We strive to make sure that people are included and have a sense of being part of making Bugcrowd not only a great product but a great place to work.

    Equal Employment Opportunity :

    Bugcrowd is EOE, Disability / Age Employer. Individuals seeking employment at Bugcrowd are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation.

    #J-18808-Ljbffr

    serp_jobs.job_alerts.create_a_job

    Director Cybersecurity • San Francisco, CA, United States

    Job_description.internal_linking.related_jobs
    • serp_jobs.job_card.promoted
    Senior Director, Enterprise Revenue Applications

    Senior Director, Enterprise Revenue Applications

    SnowflakeMenlo Park, CA, United States
    serp_jobs.job_card.full_time
    Join to apply for the Senior Director, Enterprise Revenue Applications role at Snowflake.Snowflake is seeking a Senior Director to lead the transformation of our global Order-to-Cash (OTC) infrastr...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Sr. Director, B2B Solutions

    Sr. Director, B2B Solutions

    Visa Inc.Foster City, CA, United States
    serp_jobs.job_card.full_time
    Visa Commercial Solutions (VCS) is a rapidly expanding team dedicated to delivering innovative payment solutions for businesses and governments worldwide. By partnering with Financial Institutions a...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Director, Digital Enterprise Capabilities Strategic Partner, US Business (Remote)

    Director, Digital Enterprise Capabilities Strategic Partner, US Business (Remote)

    Jazz PharmaceuticalsPalo Alto, CA, United States
    serp_jobs.filters.remote
    serp_jobs.job_card.full_time
    If you are a current Jazz employee please apply via the Internal Career site.Jazz Pharmaceuticals is a global biopharma company whose purpose is to innovate to transform the lives of patients and ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Sr. Director, Risk Management

    Sr. Director, Risk Management

    Blackhawk NetworkPleasanton, CA, US
    serp_jobs.job_card.full_time
    The role reports to the Vice President of Risk Management.The role will be a key player in Blackhawk Network's continued growth and global expansion. The company is looking for this leader to centra...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Senior Cybersecurity Engineer

    Senior Cybersecurity Engineer

    Bio, Inc.Redwood City, CA, United States
    serp_jobs.job_card.full_time
    At Q Bio, we are transforming healthcare by combining AI, Physics, and Biology to automate the physical exam, making preventive, personalized care accessible to all. We are hiring a Senior Cybersecu...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Director of AEO & SEO

    Director of AEO & SEO

    RampSan Francisco, CA, United States
    serp_jobs.job_card.full_time
    This range is provided by Ramp.Your actual pay will be based on your skills and experience — talk with your recruiter to learn more. At Ramp, we’re rethinking how modern finance teams function in th...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    Director, ChromeOS Enterprise

    Director, ChromeOS Enterprise

    Google Inc.Mountain View, CA, United States
    serp_jobs.job_card.full_time
    Google is seeking a Director of ChromeOS Enterprise, Americas, to lead the North American enterprise sales organization and drive business growth for the ChromeOS business.The successful candidate ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    Director, Compliance

    Director, Compliance

    SupermicroSan Jose, CA, United States
    serp_jobs.job_card.full_time
    Supermicro is a Top Tier provider of advanced server, storage, and networking solutions for Data Center, Cloud Computing, Enterprise IT, Hadoop / Big Data, Hyperscale, HPC and IoT / Embedded customers...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Sr Director, Global Sanctions Compliance

    Sr Director, Global Sanctions Compliance

    VisaFoster City, CA, United States
    serp_jobs.job_card.full_time
    Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more t...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Sr Director, Business Risk & Controls

    Sr Director, Business Risk & Controls

    LendingClubSan Francisco, CA, United States
    serp_jobs.job_card.full_time
    Partner closely with Business leaders, Technology, Operations, Marketing, and other support areas to design and implement controls that meet regulatory requirements and align with efficient operati...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Director, Cloud Operations

    Director, Cloud Operations

    Cornerstone ResearchSan Francisco, CA, United States
    serp_jobs.job_card.full_time
    If you are a seasoned cloud technology leader looking for an opportunity to showcase your strategic design, implementation and management of cloud infrastructures, then we would like to meet you!.T...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    IT Director, Risk Advisory Services

    IT Director, Risk Advisory Services

    BDO Capital Advisors, LLCSan Francisco, CA, United States
    serp_jobs.job_card.full_time
    Working under the authority of a Principal, the Assurance Director, Risk Advisory Services is responsible for overseeing and delivering risk advisory services around Information Technology (IT) rel...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Sr. Director, GRM Solutions (San Jose) at PayPal San Jose, CA

    Sr. Director, GRM Solutions (San Jose) at PayPal San Jose, CA

    PayPalSan Jose, CA, United States
    serp_jobs.job_card.full_time
    Director, GRM Solutions (San Jose) job at PayPal.The Senior Director, Global Risk Management (GRM) Solutions and Markets will lead and execute the global strategy to commercialize PayPal proprietar...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Director Enterprise Risk - Samuel Merritt University

    Director Enterprise Risk - Samuel Merritt University

    Another SourceOakland, CA, US
    serp_jobs.job_card.full_time
    Director Of Enterprise Risk, Safety & Security.Another Source's partner, Samuel Merritt University, is hiring a Director of Enterprise Risk, Safety & Security in Oakland, CA.If you've ever wanted t...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Sr. Director, BT Risk Management

    Sr. Director, BT Risk Management

    Clearance JobsPleasanton, CA, US
    serp_jobs.job_card.full_time
    Director Of Business Technology Risk Management.Your work days are brighter here.We're obsessed with making hard work pay off, for our people, our customers, and the world around us.As a Fortune 50...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Sr. Director, BT Risk Management

    Sr. Director, BT Risk Management

    Workday, Inc.Pleasanton, CA, United States
    serp_jobs.job_card.full_time
    Your work days are brighter here.We’re obsessed with making hard work pay off, for our people, our customers, and the world around us. As a Fortune 500 company and a leading AI platform for managing...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Senior Director, Threat Operations

    Senior Director, Threat Operations

    DiscordSan Francisco, CA, US
    serp_jobs.job_card.full_time
    Senior Director, Threat Operations.Discord is used by over 200 million people every month for many different reasons, but there's one thing that nearly everyone does on our platform : play video gam...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Sr. Director, Cybersecurity

    Sr. Director, Cybersecurity

    Bugcrowd Inc.San Francisco, CA, United States
    serp_jobs.job_card.full_time
    Since 2012, we’ve been empowering organizations to take back control and stay ahead of threat actors by uniting the collective ingenuity and expertise of our customers and trusted alliance of elite...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days