Senior Security Program Manager

WHO WE ARE

Apex Fintech Solutions (AFS) powers innovation and the future of digital wealth management by processing millions of transactions daily, to simplify, automate, and facilitate access to financial markets for all. Our robust suite of fintech solutions enables us to support clients such as Stash, Betterment, SoFi, and Webull, and more than 20 million of our clients' customers. 

Collectively, AFS creates an environment in which companies with the biggest ideas in fintech are empowered to change the world. As a global organization, we have offices in Austin, Dallas, Chicago, New York, Portland, Belfast, and Manila.

If you are seeking a fast-paced and entrepreneurial environment where you'll have the opportunity to make an immediate impact, and you have the guts to change everything, this is the place for you. 

AFS has received a number of prestigious industry awards, including:

• 2021, 2020, 2019, and 2018 Best Wealth Management Company - presented by Fintech Breakthrough Awards

• 2021 Most Innovative Companies - presented by Fast Company

• 2021 Best API & Best Trading Technology - presented by Global Fintech Awards

ABOUT THIS ROLE

We are looking for a Senior Security Program Manager to join our team. In this role you will be responsible for leading the development, maturation, and execution of security programs and policies, as well as managing security-related projects across the firm. An ideal candidate will have extensive experience in security program management and a proven track record of successfully implementing and maturing security programs in a fast-paced environment while elevating GRC maturity aligned to industry standards. This is a fantastic opportunity to join the front lines of the cybersecurity industry working in Financial Services, securing Apex’ systems, data and people. This role reports to Chief Information Security Officer.  

Duties/Responsibilities 

• Develop and implement security programs, policies, and procedures to Apex’s assets, employees, and customers. 

• Effectively lead cross-functional teams to develop and execute security projects. 

• Direct and guide product security initiatives with cross functional teams including Software Engineers, Product Management, and other stakeholders 

• Provide technical product security subject matter expertise and leadership in defining, documenting, implementing, and communicating product security concepts, requirements, and policies to the organization and to internal customers 

• Is standards- and compliance-savvy. You can translate frameworks like NIST-CSF, and ISO/IEC 27001/27002 into pragmatic controls, processes, and evidence. 

• Assist in driving the strategic direction of the DevSecOps Program framework through partnerships with engineering, operations, IT and the business 

• Own and project-manage the Team project by overseeing intake and triage, backlog grooming, prioritization and assignment, workflow/reporting hygiene, and SLA tracking; coordinate cross-team dependencies with Engineering, IT, Product, Compliance, and other business units to ensure timely ticket resolution and transparent stakeholder communication. 

• Define KPIs and success measures; build dashboards and executive reports on status, risk posture, control effectiveness, adoption, and resource capacity; present updates to leadership 

• Drive evangelization around security program compliance and provide security guidance and expertise to stakeholders across the organization. 

• Develop and maintain security-related documentation and reports. 

Education and/or Experience

• Bachelor's degree in Computer Science, Information Technology (or equivalent work experience) required

• 7+ years of experience in program management with at least 3 years in security program management or related roles. 

• Experience in project management and leading cross-functional teams. 

• Experience with security risk assessments and mitigation strategies. 

• Experience with the phases of the software development lifecycle 

• Experience with risk management concepts, common vulnerability scanning and penetration testing tools 

• Experience with infrastructure security concepts including firewalls, DMZs, intrusion detection/prevention systems, network security, application security concepts, CASB, password management, RBAC, SIEM, vulnerability management, and access provisioning is highly desired.  

• Experience in a regulated industry such as financial services is a plus. 

• Security certifications such as CISA, CISM, CISSP, CRISC, CGRC, ISO 27001 Lead Implementer/Auditor are highly desired. 

Required Skills/Abilities

• Proven ability to prioritize and manage multiple security initiatives in fast-paced environments

• Strong analytical and problem-solving skills with attention to security detail

• Strategic mindset with capability to navigate security challenges while delivering business value

• Experience influencing stakeholders without direct authority on security matters

• Strong decision-making skills with ability to balance security requirements with business needs

Work Environment

• This job operates in a hybrid, office environment 3 days per week.

#IT #mid-senior #full-time #LI-LN1#APEX

​Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

Our Rewards

We offer a robust package of employee perks and benefits, including healthcare benefits (medical, dental and vision, EAP), competitive PTO, 401k match, parental leave, and HSA contribution match. We also provide our employees with a paid subscription to the Calm app and offer generous external learning and tuition reimbursement benefits. At AFS, we offer a hybrid work schedule for most roles that allows employees to have the flexibility of working from home and one of our primary offices.

EEO Statement

Apex Fintech Solutions is an equal opportunity employer that does not discriminate on the basis of race, color, religion, sex (including pregnancy, sexual orientation, and gender identity), national origin, age, disability, veteran status, marital status, or any other protected characteristic. Our hiring practices ensure that all qualified applicants receive fair consideration without regard to these characteristics.

Disability Statement

Apex Fintech Solutions is committed to creating an inclusive and accessible workplace for all candidates, including those with disabilities. We are dedicated to ensuring equal employment opportunities and providing reasonable accommodations to qualified individuals with disabilities. If you require reasonable accommodations to participate in the application or interview process, please submit your request via the Candidate Accommodation Requests Form. We will work with you to provide the necessary accommodations to ensure your full participation in our hiring process.