Senior Manager, Information Security
Engineering | New York, NY | Full Time
Join Watermark’s growing team to improve Higher Education systems! Watermark is a suite of best-in-breed enterprise applications that help improve student outcomes and the effectiveness of Higher Education.
As Sr. Manager, Information Security, you are the person most responsible for Watermark’s overall security posture. This role involves both hands-on technical work such as penetration and vulnerability testing, as well as process-driven work such as periodic security training, certification with outside vendors and compliance. The ideal candidate should be comfortable working independently as well as in a team environment. The ability to perform systems security and vulnerability analysis, design secure solutions, and navigate certification and compliance processes and audits are must-haves.
Develop information security policies, procedures and practices which meet industry standards and are aligned with business goals and objectives.
Closely partner with peers in the engineering, infrastructure and devops organizations to ensure security compliance with a ‘shift left’ mindset.
Facilitate routine penetration tests and vulnerability scans; help to interpret and prioritize results for our team of 100+ developers.
Work with developers, architects and devops engineers to suggest mitigation strategies for vulnerabilities.
Define comprehensive security benchmarks, best practices and guidelines that are readily adoptable by system administrators and software developers.
Implement or improve static analysis tools in our CI/CD pipelines.
Minimize overall risk landscape through suggested application or infrastructure architecture changes.
Coordinate and manage certification processes, with the help of Watermark’s legal team, to ensure continued certification status.
Foster a culture of security consciousness across various teams.
Perform periodic security training to ensure developers are up-to-date on security best practices.
Coach and mentor other Security Engineers in Watermark’s organization.
A track record of building collaborative relationships with stakeholders across many functions.
Must be a team player with proven success on achieving aggressive deadlines.
Experience in software development.
Experience in design and implementation of application security standards.
Prior experience working in heterogeneous platforms.
Familiar with shell scripting, BASH & Python.
Deep understanding of network architecture from a security perspective.
Solid understanding of IAM and other strategies for account management.
Familiar with security frameworks such as COBIT or ITIL.
Solid understanding of OWASP principles.
Conversant understanding of cryptography (PKI, IPSEC & SSL).
Prior experience achieving certification within an enterprise environment (SOC 2, PCI, or similar).
Demonstrated leadership in all aspects of computer security.
Experience in design and implementation of firewalls, DNS, IDS/IPS, WAF, anti-virus, content filtering, data loss prevention, endpoint security, email security, network vulnerability scanning, incident management, and disk encryption technologies.
Excellent communication skills, creative problem solving, and strong passion is a must.
Passion for system architecture with a primary focus on security aspects.
Fundamental understanding of security best practices.
CISSP and/or CISM certification preferred.
Experience leading global teams preferred.
- Competitive salary
- Excellent medical, dental, and vision insurance
- 401(k) with match
- Commuter benefits
- Flexible Vacation and PTO
- Company provided Health & Wellness Options
- Flexible work options and fun, collaborative work environment
Watermark’s mission is to put better data into the hands of administrators, faculty, and students everywhere to empower them to connect information and gain insights into learning that will drive meaningful improvements. Through its innovative educational intelligence system, Watermark supports over 1,600 institutions around the world in developing an intentional approach to learning so that they can leverage data for a more holistic view of learning, faculty and staff impact, and institutional quality.
For more information on Watermark, visit www.watermarkinsights.com.
Watermark is an equal opportunity employer and does not discriminate against an individual based on the individual's race, color, age, religion, sex, sexual orientation, gender identity, national origin, disability, or any other protected characteristic or activity.