Security Engineering Manager
About The Position
We’re looking for an experienced Engineering Manager within the Infrastructure Engineering group to lead our Security Engineering team. Security engineering at Reverb is responsible for leading, designing, and building secure systems and practices for our e-commerce platform. They are highly involved in planning technical systems, designing secure practices, governance, and proactive engagement with the engineering and product organizations. The Security Engineering Manager leads our security engineers and analysts in protecting, planning, and building scalable, hardened systems across our architecture. You’ll be leading these security professionals by contributing to project oversight and planning, security assessments, long-term scope planning, proactive and preventative approaches, and being a collaborative management professional who can quickly lead our organization to make safe and practical decisions. This is a full-time, hybrid position reporting to the Senior Director, Engineering of our Infrastructure team. Hybrid team members are expected to work from our Chicago office 1-3 times per week, depending on team norms.
Requirements
- 2+ years leading or supervising security teams
- 2+ years of hands-on experience with AWS, Terraform, Helm, Kubernetes, or other generalized DevOps tooling
- 4+ years of experience in the security domain with technical expertise or contributions
- Track record of crafting, developing, and handling security projects
- Ability to develop policy, process, and procedures to apply to engineering organizations
- Detection and Response concepts with SIEM, EDR, Incident Management, IDS, and WAF like Cloudflare, Datadog, incident.io, etc.
- Experience with Vuln Management, CICD Security, BugBounty
- Regulatory experience such as PCI, FEDRAMP, SOX, etc.
- Knowledge of Authentication, RBAC, and IAM systems like Okta, AWS SSO, etc
- Experience with JIRA and Confluence
- Experience with Git
Nice To Haves
- Deep networking and threat modeling experience
- Experience with AST tools like GHAS, Snyk, or ArmorCode
- Experience with CrowdStrike platforms
- Deep experience with GitHub and GitHub security controls
- Hands-on experience with AWS EKS, Rancher, or other Kubernetes platforms
Responsibilities
- Day-to-day management of security engineers and analysts at Reverb
- Security sprint planning and retrospectives
- Collaborate with other engineering managers to achieve roadmap goals
- Perform security reviews, audits, assessments, and remediation actions or reporting
- Engage in highly technical architecture feedback and design reviews
- Hands-on engagement with git, DevOps, and security tools to help bolster understanding with other technical teams
- Advise crucial GRC, technical, and policy to engineering leadership
Benefits
- 100% paid premiums for medical, dental, and vision coverage for the employee, spouse or domestic partner, and all eligible dependents. Medical coverage includes gender affirming care.
- Life, AD&D, and supplemental long-and short-term disability insurance
- A matching 401(k)
- A generous PTO policy that includes vacation, sick/mental health days plus 11 paid holidays and two floating holidays
- Professional development and continued learning opportunities through access to mentoring, 1:1 coaching, and platforms like Skillsoft
- 18 weeks of gender-neutral parental leave for the birth or adoption of a child
- Up to $25,000 reimbursement of adoption and/or surrogacy related expenses
- Paid sabbatical program
- Annual work/life stipend
- Ways to give back to your community through volunteer time off
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Manager
Education Level
No Education Listed
Number of Employees
101-250 employees
