We're sorry, but this job has been closed. See other open jobs at Manilla

Senior Manager Security (IT/Ops)

San Francisco, CA | IT/Operations

Job Description

About this Start-up

"2012 Webby award winner Manilla <http://www.manilla.com> is the definitive digital account management service that instantly gets consumers organized, reduces clutter and stress, and saves time and money.  With Manilla, consumers get an up-to-the-minute organized view of all their household accounts - including financial, utilities, travel rewards, and subscriptions – anywhere, anytime.  Manilla also makes it easier for consumers to manage their accounts, pay their bills, and see and store forever all of their account-related mail.

Manilla is a fully-funded startup backed by Hearst Corporation, with a very seasoned and successful leadership team.  Manilla has offices in New York and San Francisco. 

The Role
The Security Senior Manager will ensure adherence to the Company’s web application information security strategy, programs and best practices. This is a highly visible hands-on position responsible for security governance and oversight that includes identifying and mitigating security risks across functions such as Engineering, Operations and Information Technology. This role requires practical knowledge in the areas of logical security of applications, operating systems, databases and networks. This individual is the resident web security expert, and is a key resource who drives security initiatives and manages cross-functional project teams. The role is the representative of the company’s security function to management, staff, customers and auditors.
Key Responsibilities:
  • Oversee all aspects of enterprise security related to our web product within production, development and corporate environments
  • Identify security risks and develop solutions to eliminate or minimize them 
  • Maintain security policies and procedures
  • Lead the corporate security incident response process
  • Drive successful enforcement of security policies and procedures
  • Manage security and operational assessments with prospects, customers and vendors
  • Manage remediation of any findings from internal or external assessments
  • Lead implementation of security initiatives and projects
  • Work with Technical Operations to design, implement and maintain web service Business Continuity and Disaster Recovery Programs
  • Implement and supervise corporate security awareness programs and required training for all employees.
  • 5+ years in an web information security role with emphasis on:
  • Security policy management
  • Security audits and assessments (SAS70 / SSAE16, ISO 27001 / 27002, PCI)
  • Application and database security
  • Network security architecture
  • Security infrastructure technologies
  • Vulnerability analysis
  • Physical security
  • 8+ years of web application experience
  • Strong program and project management skills
  • Excellent communication skills, including presentations, negotiations and technical writing
  • Experience in business and security risk assessment
  • Broad technical knowledge of and experience with:
  • System administration on Linux platforms
  • Secure coding on Ruby on Rails and Java frameworks
  • TCP/IP architecture, routing protocols and security systems
  • Enterprise-class routers, switches, firewalls and intrusion detection systems
  • Data encryption and key management
  • Previous supervisory or management experience
  • Bachelor’s degree and other relevant education and training from an accredited college or university
  • CISSP, CISM or CISA certification
Position Filled
Not the right job?
Describe your perfect job
Join our Talent Network »