Security Engineer designing and implementing security measures to protect Snap Inc.'s infrastructure. Collaborating across teams while focusing on threat detection and response strategies.
About the role
- Director of Security and Compliance safeguarding digital assets and data with a focus on cybersecurity and compliance. Leading risk management, stakeholder engagement, and team leadership initiatives.
Responsibilities
- Set the mission, vision, and strategy for technology risk management including cybersecurity, compliance and privacy organization.
- Implement appropriate risk management and mitigation efforts while ensuring the success of business and IT initiatives, ensuring alignment with business objectives and product priorities.
- Demonstrate exceptional communication and presentation skills, effectively conveying complex technical and compliance concepts to critical stakeholders, including senior managers and the executive leadership team, to support informed decision-making.
- Build successful stakeholder relationships with other IT, enterprise risk managers and key business stakeholders by developing a clear understanding of business needs, acting as a trusted advisor, and ensuring cost-effective delivery of security services to meet those needs.
- Direct enterprise-wide security architecture and operations across IT and OT environments, ensuring secure design, deployment, and ongoing protection of infrastructure, applications, and data systems.
- Ensure compliance with all relevant cybersecurity, compliance and privacy regulations. As part of a strategic enterprise risk management program, conduct compliance assessments and provide regular status reports to risk management teams and senior business leaders including relevant metrics, key performance and risk indicators.
- Lead cross-functional Privacy Team to develop and implement a comprehensive enterprise-wide data and personnel privacy program. Maintain current policies, facilitate publication and communication, and ensure all employees receive required privacy training.
- Develop and control the annual department budget to ensure that it's consistent with the overall strategic objectives of IT and the enterprise and is within plan.
- Foster an enterprise security culture by embedding compliance and risk management practices into daily business operations. Lead organization-wide training and awareness initiatives that enable informed cybersecurity decision-making across all functions and levels.
- Conduct comprehensive enterprise risk assessments and develop strategies that strengthen business continuity, disaster recovery, and incident response capabilities. Build, train, and coordinate cross-functional incident response teams across security, IT, business partners, and executive leadership to ensure effective crisis response and business protection.
- Ensure digital and paper archiving (warehouse) systems are complying with corporate data retention policies. Collaborate with Product Managers to ensure they understand policies and their products and services are aligned.
- Build and lead a high performing team. Work collaboratively with direct reports to support their career progression, nurture their development and to help them realize their potential. Have a documented succession plan for critical functions. Develop and actively participate in peer network groups. Stay up on trends and share lessons learned.
- Lead vendor management and negotiations with security service providers. Establish strong vendor relationships ensuring vendors understand and share our focus on security and are capable of meeting requirements.
Requirements
- Bachelor’s or Master’s degree in business administration or technology related field
- 15 or more years of experience in IT Operations, cybersecurity or business/industry
- 7 or more years of leadership responsibilities, including strategy, budgeting, and staffing
- 3 or more years of leadership responsibilities of an auditable compliance program (ex: NIST 800-171, CMMC, ISO 2700x, SOC 2, NERC-CIP, etc.)
- Exceptional leadership skills, with the ability to develop and communicate a vision that inspires and motivates staff and aligns with the IT and business strategy
- Effective influencing and negotiation skills and the ability to build consensus in complex environments where resources required for success may not be in direct control of this role
- Demonstrate collaboration skills across multiple teams including business operating groups, corporate departments and other IT teams
- Excellent analytical, strategic conceptual thinking, strategic planning, and execution skills
- Strong business acumen, including industry, domain-specific knowledge of the enterprise and its business units
- Developing staff including coaching, mentoring and performance management
- Deep understanding of current and emerging security technologies and practices, and how other enterprises are employing them
- Strong awareness of current and changing regulatory landscape
- Maintain awareness of emerging threats and incorporate appropriate mitigation measures
- Demonstrated ability to develop and execute a strategic staffing plan that ensures the right people are in the right roles at the right time, and employees are highly engaged and satisfied
- Third-party management, working closely with sourcing and vendor managers
Benefits
- medical
- dental
- vision
- 401(k) with company matching
- Employee Stock Ownership Program (ESOP)
- individual stock ownership
- paid vacation
- paid sick leave
- paid holidays
- bereavement leave
- employee assistance program
- pre-tax flexible spending accounts
- basic term life insurance and AD&D
- business travel accident insurance
- short and long term disability
- financial wellness coaching
- educational assistance
- Care.com membership
- ClassPass fitness membership
- DashPass delivery membership
- additional term life insurance
- long term care insurance
- critical illness and accidental injury insurance
- pet insurance
- legal plan
- identity theft protection
- other voluntary benefit options
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
IT Security & Compliance Head at Lonza leading security strategy and managing global risk. Collaboration with senior leadership to enhance information security across Capsules & Health Ingredients business.
Senior Security Manager leading security for Sanofi meetings and events across North America. Ensuring compliance with global meeting policies and managing event security operations in high - stake environments.
Security Officer maintaining safety protocols at Aloft New Orleans. Responsible for patrolling, monitoring security systems, and assisting guests with safety - related concerns.
Security Detection Specialist responsible for detecting cybersecurity incidents using advanced security technologies. Analyzing data feeds and leveraging security tools for incident detection and reporting.
Senior Incident Response Engineer at Walmart focusing on security threat campaigns to enhance detection and response capabilities. Collaborating with SOC and engineering teams to improve security posture.
Head of Infrastructure & Security at Kinatico, a RegTech leader, focused on cloud infrastructure and security governance. Leading a technically deep team of cloud engineers and security specialists in a hybrid environment.
Security Engineer at KAYAK responsible for implementing security improvements and managing security tools in Berlin office infrastructure. Collaborating with teams to monitor incidents and enhance security protocols.
Security Supervisor responsible for loss prevention and safety at WarHorse Gaming casino in Omaha. Ensuring compliance with regulations and managing security team operations.
Security Shift Manager overseeing security operations at WarHorse Gaming Omaha. Responsible for team safety, compliance with regulations, and staffing in the security department.