Engineering Manager, Security

We believe in the power of hiring. Because the potential for people to do something outstanding has everything to do with being in the right role, on the right team, at the right time. That’s where Greenhouse comes in – from recruiting to on-boarding, we make software to help every company be great at hiring.

Greenhouse is looking for an Engineering Manager, Security to join our team!

Our Engineering Manager, Security will lead and grow our security program and partner with our product engineering teams on proactively identifying and addressing security issues in our product suite. You will lead a distributed team of engineers and scale our application security practices by improving automation, holistically remediating security issues, and promoting secure-by-default principles.

Security at Greenhouse is critical to our success and for building & maintaining customer trust. From influencing how we write our software, deploy our infrastructure, and make architecture decisions, security is a primary focus.

Who will love this job

• A security lover - you keep up with the latest security research and love finding security issues in the newest technology across various security fields
• A problem solver - you can tackle complex security problems while still balancing good usability and mitigating security risk
• A doer - you get things done with attention to detail and are motivated to improve on the status quo
• A people-person - you shine when collaborating with others and are eager to contribute across the organization

What you’ll do

• Lead a team of 2 to help define and oversee the company’s product security strategy
• Leverage security tooling to proactively detect security vulnerabilities and promote security awareness to developers
• Partner with engineering to design frameworks/controls to promote ‘secure by default’ practices to support a growing microservice environment
• Provide your security domain expertise by partnering with engineers and product teams to impact the code base as well as product features that protect our customers security and data privacy
• Respond to vulnerability reports and incidents by identifying the risk and providing practical remediation advice to our product engineering teams and other partners
• Supervise security vulnerabilities and prioritize remediations with teams according to our SLA requirements
• Help define product security roadmaps and lead security projects from start to finish

You should have

• Experience pen-testing web applications, security architecture and design reviews, and security code reviews
• Familiarity with AWS and Kubernetes tech stacks and their security controls
• Deep understanding of web security with a focus on providing practical technical recommendations to engineering teams
• Knowledge industry-standard authentication protocols such SAML SSO, OpenID Connect and OAuth2
• Proficiency in at least one programming language and be capable of quickly picking up new languages
• Experience leading a team of security engineers
• Your own unique talents! If you don't meet 100% of the qualifications outlined above, tell us why you'd be a great fit for this role in your cover letter

Applicants must be legally eligible to work in Canada as of the start date chosen by the Company.

For purposes of processing or administering your employment relationship, personal information that you provide to the Company may be transferred to and accessed by an affiliate in the United States or elsewhere, or to agents and contractors (such as payroll companies, insurance companies, information technology consultants, etc.) that provide services to the Company.

*The national pay range for this role is $169,700 - $254,600 annually. Individual compensation will be commensurate with the candidate's experience and local cost of labor. Certain roles may be eligible for additional compensation, including stock option awards, bonuses, and merit increases. Additionally, certain roles have the opportunity to receive sales commissions that are based on the terms of the sales commission plan applicable to the role. *

#LI-WR1

Who we are

At Greenhouse, we celebrate having a diverse group of hardworking employees and it hasn’t gone unnoticed. We’ve won numerous awards including Inc. Magazine Best Workplace (2018-2022), Glassdoor #1 Best Place to Work, Forbes Cloud 100, Deloitte Technology Fast 500, Inc. 5000, Crain’s Best Places to Work NYC, Fortune’s Great Place to Work (2019 - 2022), and Mogul’s Top 100 Workplaces for Diverse Representation (2022). We pride ourselves on fostering a collaborative culture throughout every step of a Greenhouse employee's journey. From day one of our interview process to executive "Ask Me Anything" sessions, we consistently cultivate an inclusive environment.

Greenhouse provides a variety of benefits to employees, including medical, dental, and vision insurance, basic life insurance, mental health resources, financial wellness benefits, and a fully paid parental leave program. For US-based employees, we offer short-term and long-term disability coverage, a 401(k) plan and company match. U.S. based employees also receive, per calendar year, up to 13 scheduled paid holidays and up to 80 hours of paid sick leave. Non-exempt employees accrue up to 20-25 days of paid vacation time, depending on tenure, and exempt employees have unlimited paid time off (PTO). For Ireland-based employees, we offer 25 days' vacation and an employer matching pension program.

Our success in making companies great at hiring depends on our ability to create a diverse, equitable and inclusive environment. To that end, we’re committed to attracting, developing, retaining and promoting a diverse workforce, and infusing DE&I throughout all of our internal practices. By ensuring that every Greenie is able to bring a diversity of talents to our work, we’re increasingly capable of living out our mission and providing real insight from our products to support our customers. We encourage people from underrepresented backgrounds and all walks of life to apply. Come grow with us at Greenhouse, where we’re building a team to face the world’s increasingly complex and diverse hiring needs.

Want to learn more about our interviewing process? Check out our interviewing at Greenhouse page

**We are a distributed company and do our best work where it works best for us - as individuals and as teams. Our regional headquarters are based in New York (North America) and Dublin (Europe), but our employees are distributed across the US, Canada, and Ireland.**

Our Talent Acquisition (TA) team at Greenhouse has recently been notified of a phishing scam targeting candidates applying for our open roles. Scammers have been posing as hiring managers and recruiters in an effort to access candidates’ personal and financial information. Please note that any communication from our hiring teams at Greenhouse regarding a job opportunity will only be made by a Greenhouse employee with an *@greenhouse.io** email address. We would never ask you as part of our interview process to provide personal or financial information, including but not limited to your social security number, online account passwords, credit card numbers, passport information and other related banking information. If you believe you’ve been a victim of a phishing attack, please mark the communication as “spam” and alert us right away at [email protected].*