Director, Product Security

About the position

As the Director of Product Security, you will be responsible for overseeing the security of our financial software products from design to deployment. You will provide strategic leadership and direction for a team of security professionals, ensuring security standards and practices are embedded throughout the entire product development lifecycle. This role requires a mix of deep technical expertise, a solid understanding of security architecture, and strong leadership skills to guide teams through complex security challenges.

Responsibilities

• Design and implement security frameworks and solutions to safeguard our financial software products.
• Lead the security strategy for product development, ensuring alignment with industry best practices, regulatory compliance (e.g., GDPR, PCI-DSS), and organizational security goals.
• Build scalable security solutions for cloud-based environments (AWS, Azure, Google Cloud, etc.) and ensure integration into the development pipeline.
• Lead, mentor, and develop a high-performing team of security engineers, analysts, and architects.
• Foster a collaborative environment and maintain a culture of security awareness across cross-functional teams including product development, engineering, and operations.
• Provide guidance and direction for the team to develop skills in emerging security threats, technologies, and practices.
• Oversee the implementation of cloud-native security best practices and secure cloud infrastructure in multi-cloud environments.
• Develop and enforce cloud security policies, identity and access management (IAM), vulnerability management, and threat detection systems in large cloud platforms.
• Identify and mitigate risks related to product security and ensure proactive security measures are in place.
• Lead incident response planning and drive root cause analysis of security breaches or vulnerabilities.
• Develop and maintain a comprehensive security incident response plan for products and cloud environments.
• Partner with product, engineering, and operations leadership to ensure that security considerations are part of product roadmaps and release cycles.
• Collaborate with other senior leaders in engineering, IT, and compliance to ensure unified approaches to product security across the company.
• Stay up-to-date with the latest developments in cybersecurity threats, industry trends, and emerging technologies to proactively address future security needs.
• Recommend improvements in processes and tools to increase the overall security posture and efficiency of the product development lifecycle.

Requirements

• Typically requires a Bachelor's degree in cyber security or computer science and a minimum of 12 years of related experience; or an advanced degree with 8+ years of experience; or equivalent relevant work experience.
• Typically requires 5-7 years managing and developing employees.
• Strong experience with security in large cloud environments (AWS, Azure, Google Cloud, etc.) and cloud security architecture.
• Proven experience in designing and implementing secure software architecture and understanding of secure software development lifecycle (SDLC).
• Hands-on experience with modern threat detection, vulnerability management, and cloud-native security tools.

Nice-to-haves

• Expertise in security frameworks (e.g., NIST, ISO 27001, OWASP Top 10).
• Strong knowledge of encryption, identity and access management (IAM), and secure coding practices.
• Proficiency in cloud platforms (AWS, Azure, Google Cloud) and securing cloud-native applications, APIs, and microservices.
• Familiarity with container security, DevSecOps practices, and automation of security controls.

Benefits

• Hybrid Work Opportunities
• Flexible Time Off
• Career Development & Mentoring Programs
• Health & Wellness Benefits, including competitive health insurance offerings and generous paid parental leave for eligible new parents
• Community Volunteering & Company Philanthropy Programs
• Employee Peer Recognition Programs - 'You Earned it'