Senior Manager, Security Engineering

Summary

Join 6sense's Security Engineering team as a working manager, overseeing daily operations, team initiatives, and people management. You will be hands-on in building security engineering practices and tools. Responsibilities include hiring and mentoring a team, building partnerships with other teams, implementing security tooling and improvements, managing application and infrastructure security programs, driving security awareness, and implementing a bug bounty program. The role requires extensive experience in information security, team management, and familiarity with various security tools and frameworks. 6sense offers a competitive salary, benefits including health insurance, life and disability insurance, 401k matching, paid time off, and stock options, along with a growth-oriented culture and wellness programs.

Requirements

• 8+ years of experience in information security, with a focus on Secure SDLC, Cloud Security, bug bounty, and vulnerability management
• 3+ years of experience managing a Security Engineering or similar team
• Experience with security tools (e.g., Vulnerability Scanners, SAST/DAST, DevOps software, AWS cloud security tooling, CNAPP/CSPM)
• Strong knowledge of industry frameworks, regulations and standards, such as: NIST 800-218 SSDF, OWASP, SAFECode, CIS benchmarks, ISO 27001, SOC 2, GDPR, PCI, SOX, NIST 800-53, etc

Responsibilities

• Hire and mentor a best-in-class team of Security Engineers
• Build strong, collaborative partnerships with Development, Infrastructure and Product teams
• Implement security-related tooling, technical and process improvements and author project plans for security initiatives
• Manage a robust Application Security program, to include: vulnerability management, secure code reviews and standards, security architecture reviews, and technical integrations assessments
• Manage a robust Infrastructure Security Management program, to include: vulnerability management, infrastructure and container change reviews, SaaS infrastructure access & permissions models, cloud security best practices, and operating system security
• Drive efforts to improve security awareness in the areas of application security and the secure development of code through technical controls, education and training
• Implement a best-in-class bug bounty program which positions 6sense as the leading authority amongst other programs
• Evolve corporate security policies and procedures to stay aligned with the security industry best practices
• Maintain expert knowledge of 6sense’s controls, product/product roadmap, and cloud architecture
• Prepare and deliver meaningful KPIs and metrics representative of the Security Engineering function
• Design and execute quarterly (O)KRs
• Holds weekly 1:1s with all members of team and Manager
• Implements security controls considering the latest security threats, trends, and best practices to ensure that 6sense's security posture remains effective and efficient
• Manages vulnerabilities to remediation within targeted SLA or risk acceptance
• Maintains inventory of security scope for 6sense product(s)
• Enhances and grows skillset of direct reports
• Maintains up to date collateral, metrics and processes

Preferred Qualifications

• Bachelor's degree in a related field
• Relevant industry certifications, such as CISSP, CISM, or GIAC, are highly desirable

Benefits

• Health insurance coverage
• Life, and disability insurance
• A 401K employer matching program
• Paid holidays
• Self-care days
• Paid time off (PTO)
• Bonus program or commission plan
• Stock options
• Paid parental leave
• Stock options
• Access to our LinkedIn Learning platform
• Quarterly wellness education sessions