Security Engineering Manager

WHO WE ARE

Apex Fintech Solutions (AFS) powers innovation and the future of digital wealth management by processing millions of transactions daily, to simplify, automate, and facilitate access to financial markets for all. Our robust suite of fintech solutions enables us to support clients such as Stash, Betterment, SoFi, and Webull, and more than 20 million of our clients' customers. 

Collectively, AFS creates an environment in which companies with the biggest ideas in fintech are empowered to change the world. As a global organization, we have offices in Austin, Dallas, Chicago, New York, Portland, Belfast, and Manila.

If you are seeking a fast-paced and entrepreneurial environment where you'll have the opportunity to make an immediate impact, and you have the guts to change everything, this is the place for you. 

AFS has received a number of prestigious industry awards, including:

• 2021, 2020, 2019, and 2018 Best Wealth Management Company - presented by Fintech Breakthrough Awards

• 2021 Most Innovative Companies - presented by Fast Company

• 2021 Best API & Best Trading Technology - presented by Global Fintech Awards

ABOUT THIS ROLE

The Manager, Information Security Engineering will be responsible for our Information Security Engineering Team personnel and functions including, but not limited to application security, cloud security, data security, DevSecOps, secure SDLC, security automation, security planning & strategy, and implementing security controls. 

This position requires an adaptable person, comfortable and apt at development of strategy, vision and personnel management as well as tactical problem-solving, and hands-on troubleshooting as needed. The Manager will execute and recommend strategic development and integration of security controls in application & product development and various cloud technology instances (IaaS, SaaS, PaaS, etc.) managed by Apex Fintech Solutions. You'll balance hands-on technical guidance with people management responsibilities, driving the maturation of our security capabilities to meet evolving threats in the financial services landscape. This role is also expected to be able to solve complex problems with little oversight, take ownership and work independently as needed. 
 
Duties/Responsibilities 

• Build and develop a team of security engineers, providing technical guidance, mentorship, and performance management 

• Provide day-to-day oversight of direct report(s), offer guidance and direction where necessary, assist in issue resolution, balance competing interests, and escalate significant concerns as appropriate 

• Embedding security controls and technologies seamlessly into the development lifecycle of systems, applications, platforms, and products.  

• Develop security engineering processes, procedures and standards across the organization to promote standardized security requirements, aligning with internal policies and compliance requirements. 

• Partner with cross-functional teams (Security Operations, GRC, IT, Engineering, Technology, Platform) to implement security controls that protect Apex systems and data. 

• Participate in the software design life cycle, total cost of ownership of security technology, application security, and platform infrastructure. 

• Influence & instill secure by design standards, guidelines, and technologies. 

• Manage security engineering projects within allocated budgets and timelines while measuring success through meaningful KPIs and SLAs 

• Foster innovation within an agile framework while maintaining operational excellence in our security tooling and infrastructure 

• Create scalable security automation solutions to increase efficiency and consistency of protection capabilities. 

• Support security incident response activities for technical and product incidents. 

• Communicate security requirements and status to both technical and non-technical stakeholders 

Education & Experience

• Bachelor's degree in Computer Science, Information Security, Engineering, or related field (or equivalent work experience) required

• 7+ years of security engineering or cybersecurity experience

• 3+ years of team leadership or management experience

• Demonstrated success implementing security solutions at enterprise scale

• Experience working in agile development environments and DevSecOps practices

Required Skills/Abilities

• Strong understanding of security frameworks, threat modeling, and secure coding practices

• Proficiency with security tools such as SIEM, vulnerability scanners, firewalls, and endpoint protection

• Deep knowledge of cloud security, container security, and infrastructure security

• Experience with security automation, scripting languages (Python, PowerShell), and Infrastructure-as-Code

• Strong analytical skills with experience using security analytics platforms and incident response tools

• Exceptional verbal and written communication skills with ability to collaborate across technical and non-technical teams

• Proven ability to prioritize and manage multiple security initiatives in fast-paced environments

• Strong analytical and problem-solving skills with attention to security detail

• Strategic mindset with capability to navigate security challenges while delivering business value

• Experience influencing stakeholders without direct authority on security matters

• Strong decision-making skills with ability to balance security requirements with business needs

• Performing or acting as team lead or manager with direct reports. 

• Experience with data security, secure coding practices and security technologies 

• Experience in using industry standards & regulations, such as ISO, NIST CSF, CIS Controls, SOC 2, SEC, FINRA 

• Skilled in managing DevSecOps, CI/CD, source control management and infrastructure-as-code such as GitHub, Bitbucket, Terraform, etc.  

• Experience with Microservices, Containers and Kubernetes security. 

• Expertise in the design, development, implementation, and maintenance of on-premises Data Center technologies and Cloud environments such as Azure, GCP, and/or AWS. 

• Experience with scripting and programming languages, including integration with APIs, such as Python, Perl, PowerShell, Bash, Java, JavaScript, and Go. 

• Familiarity with multiple security, vulnerability and threat frameworks such as OWASP, EPSS, MITRE, CVSS, Threat Modeling, etc. 

Work Environment

• This job operates in a hybrid, office environment 3 days per week.

#IT #mid-senior #full-time #LI-LN1 #APEX

​Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

Our Rewards

We offer a robust package of employee perks and benefits, including healthcare benefits (medical, dental and vision, EAP), competitive PTO, 401k match, parental leave, and HSA contribution match. We also provide our employees with a paid subscription to the Calm app and offer generous external learning and tuition reimbursement benefits. At AFS , we offer a hybrid work schedule for most roles that allows employees to have the flexibility of working from home and one of our primary offices.

Salary Range

The annual base salary range for this position is noted above. Exact compensation offered may vary depending on job-related knowledge, skills, experience, and office location.

EEO Statement

Apex Fintech Solutions is an equal opportunity employer that does not discriminate on the basis of race, color, religion, sex (including pregnancy, sexual orientation, and gender identity), national origin, age, disability, veteran status, marital status, or any other protected characteristic. Our hiring practices ensure that all qualified applicants receive fair consideration without regard to these characteristics.

Disability Statement

Apex Fintech Solutions is committed to creating an inclusive and accessible workplace for all candidates, including those with disabilities. We are dedicated to ensuring equal employment opportunities and providing reasonable accommodations to qualified individuals with disabilities. If you require reasonable accommodations to participate in the application or interview process, please submit your request via the Candidate Accommodation Requests Form. We will work with you to provide the necessary accommodations to ensure your full participation in our hiring process.