remote
Manager, Security Engineering - TMX GROUP
Software Engineer
Lead a high‑impact security engineering team, designing secure architectures, driving threat modeling, and orchestrating incident response across cloud and on‑prem environments. Leverage DevSecOps practices to embed security into the software delivery lifecycle.
About the role
Key Responsibilities
- Lead and mentor a multidisciplinary security engineering team, setting technical direction and ensuring delivery of secure solutions across the organization.
- Architect and implement secure infrastructure and application designs, incorporating threat modeling, secure coding practices, and continuous security testing.
- Drive incident response and threat hunting initiatives, coordinating with cross‑functional teams to contain, investigate, and remediate security events.
- Establish and maintain security policies, standards, and compliance frameworks (e.g., ISO 27001, SOC 2, PCI‑DSS) across cloud and on‑prem environments.
- Integrate security controls into CI/CD pipelines, promoting a DevSecOps culture and automating security checks.
- Collaborate with product, engineering, and operations to assess risk, prioritize mitigations, and ensure secure product releases.
Requirements
- 10+ years of experience in security engineering, with 3+ years in a leadership role.
- Deep expertise in cloud security (AWS, Azure, GCP), secure architecture, and threat modeling.
- Proven track record in incident response, vulnerability management, and security automation.
- Strong understanding of regulatory compliance (ISO 27001, SOC 2, PCI‑DSS) and risk assessment frameworks.
- Excellent communication skills, able to translate complex security concepts to technical and non‑technical stakeholders.