Security Engineering Manager

Position Summary:

League's Security Engineering teams are responsible for scaling security in the development lifecycle and security incident management. We believe in security by design and follow a paved road philosophy by building or buying tools that we can integrate into our platform to ultimately make it easier for our engineers to do the right thing. Security is everyone's responsibility, but security engineering is how we make it possible for engineers to ship high quality code to production several times per day with security baked in.

We are seeking a Security Engineering Manager to help us build and grow our security engineering teams. You'll be accountable for your team's success. Whether it is coaching team members on a one-on-one basis or driving the team to meet delivery goals. To thrive in this role, you are someone who communicates proactively, enjoys collaboration, and are able to balance technical tradeoffs with delivering customer value quickly and iteratively.

In this role, you will:

• Will work closely with the product, data and platform teams to support their needs as a security enabler
• Organize team capacity to be available to support other engineering teams with security rituals such as threat modeling, risk assessments, and security reviews
• Manage the relationship with 3rd party penetration testers so that significant changes can be tested within project timelines
• Be active in Slack and lunch'n'learns to promote security awareness through education and evangelism
• Manage and improve League's vulnerability management program aiming to keep within SLA to remediate issues in our product and platform
• Review 3rd party vendors that will be leveraged as part of the product or platform
• Plan, deliver, and integrate security capabilities that empower our product, data and platform engineers to ship with security by design
• Manage the growth and development of your team, e.g. regular 1:1s with team members, setting objectives, tracking career growth
• Identify headcount needs for the team, and drive planning and recruiting to fill these needs
• Maintain security controls for SOC2 Type 2 and HITRUST compliance and take part in the evidence and audit phases
• Manage the team's backlog, ensuring predictable delivery of security work items through effective scrum/agile practices

We're looking for:

• You have 2 years of experience managing security engineers
• You have 5 years of experience in a security engineering domain such as application/platform security
• You have experience using scrum rituals to organize work for a team
• You are highly process-oriented and excel at defining, maintaining, and running efficient processes for managing work items, tasks, and projects
• You have experience with technologies used by League such as Kubernetes and Google Cloud Platform (or similar)
• You are comfortable planning and executing projects from idea to completion
• You understand how to plan, build, test, and maintain complex software applications
• You are focused on results, including communicating and solving problems as they arrive
• Experience securing PHI is a strong plus

At League, everyone is welcome. Diversity makes us better, and we believe in building diversity across cultural identity, gender, sexual orientation, age and education, thought and experience.

We are an equal opportunity employer, and we are committed to working with applicants requesting accommodation at any stage of the hiring process.