{"id":13362,"date":"2025-11-18T19:17:37","date_gmt":"2025-11-18T19:17:37","guid":{"rendered":"http:\/\/kick-start.us\/?post_type=job_listing&#038;p=13362"},"modified":"2025-11-18T19:17:37","modified_gmt":"2025-11-18T19:17:37","slug":"california-398-gerente-de-seguranca-da-informacao","status":"publish","type":"job_listing","link":"https:\/\/kick-start.us\/pt-br\/vaga\/california-398-gerente-de-seguranca-da-informacao\/","title":{"rendered":"Gerente de seguran\u00e7a da informa\u00e7\u00e3o"},"content":{"rendered":"<p>Descri\u00e7\u00e3o completa do cargo<\/p>\n<p>SOBRE A FUN\u00c7\u00c3O<\/p>\n<p>You&#8217;ll be our first dedicated security leader, owning the technical execution of our security and compliance program. You&#8217;ll drive SOC 2 and PCI DSS compliance, manage our vulnerability program, and build security capabilities that enable our engineering teams to move fast while staying secure. This is a hands-on role\u2014you&#8217;ll design controls, write policies, respond to incidents, and work directly with auditors.<\/p>\n<p>This is initially an individual contributor role with high impact and visibility. As our security program matures, you&#8217;ll have the opportunity to build and lead a security team.<\/p>\n<p>IN THIS ROLE, YOU WILL<br \/>Own Compliance<\/p>\n<ul>\n<li>Lead SOC 2 Type II and PCI DSS programs through successful audit<\/li>\n<li>Design and implement security controls without blocking velocity<\/li>\n<li>Serve as primary technical contact for external auditors and assessors<\/li>\n<li>Manage third-party vendor security assessments and ongoing monitoring<\/li>\n<li>Build automated evidence collection and continuous compliance monitoring<\/li>\n<li>Report security metrics and program status to executive leadership<\/li>\n<\/ul>\n<p>Manage Security Operations<\/p>\n<ul>\n<li>Establish vulnerability management program with defined SLAs and remediation workflows<\/li>\n<li>Own end-to-end vulnerability management: identify, assess, prioritize, and drive remediation to completion across infrastructure and applications<\/li>\n<li>Manage external penetration testing program with third-party vendors, including scoping, assessment review, and remediation tracking<\/li>\n<li>Perform internal penetration testing and security assessments of applications, APIs, and infrastructure<\/li>\n<li>Build SIEM detection rules, security dashboards, and alert triage processes<\/li>\n<li>Develop and test incident response runbooks<\/li>\n<li>Conduct threat modeling for critical systems and architectural changes<\/li>\n<li>Lead security assessments of new technologies and third-party integrations<\/li>\n<\/ul>\n<p>Enable &amp; Collaborate<\/p>\n<ul>\n<li>Partner with platform engineering to implement security roadmap: AWS landing zone design, PAM\/JIT workflows, account segmentation, disaster recovery testing<\/li>\n<li>Enforce enterprise security controls (SSO, secrets management, RBAC)<\/li>\n<li>Build and deliver security awareness training program for all employees<\/li>\n<li>Develop and maintain security policies, standards, and procedures<\/li>\n<li>Translate compliance requirements into actionable engineering tasks and drive completion<\/li>\n<\/ul>\n<p>YOU HAVE<br \/>Security &amp; Compliance:<\/p>\n<ul>\n<li>5+ years in information security, with 2+ years in fintech or highly regulated industry<\/li>\n<li>CISSP certification (or actively pursuing &#8211; must obtain within 12 months of hire)<\/li>\n<li>Hands-on experience leading SOC 2 and PCI DSS audits from start to finish<\/li>\n<li>Strong incident response background\u2014you&#8217;ve led real security incidents<\/li>\n<li>Experience with vulnerability management platforms (Wiz, Snyk, Tenable)<\/li>\n<\/ul>\n<p>Technical Skills:<\/p>\n<ul>\n<li>Solid understanding of AWS security: IAM, Security Hub, GuardDuty, CloudTrail, KMS<\/li>\n<li>Experience with SIEM platforms (Splunk, Datadog, Elastic)\u2014you can write detection rules and build dashboards<\/li>\n<li>Hands-on experience with vulnerability assessment and penetration testing tools (Burp Suite, Nessus, Qualys, or similar)<\/li>\n<li>Ability to read code (Ruby, JavaScript, Python) and assess security implications<\/li>\n<li>Knowledge of web application security, API security, and OWASP Top 10<\/li>\n<li>Understanding of access control patterns (PAM, SSO, RBAC, least privilege)<\/li>\n<\/ul>\n<p>Core Competencies:<\/p>\n<ul>\n<li>Strong communication\u2014you can explain risks to engineers and executives alike<\/li>\n<li>Pragmatic risk management in fast-paced environments<\/li>\n<li>Self-starter who builds programs from scratch<\/li>\n<li>Collaborative mindset\u2014security as enabler, not blocker<\/li>\n<li>Ability to drive remediation to completion across teams<\/li>\n<\/ul>\n<p>NICE TO HAVE<\/p>\n<ul>\n<li>Additional certifications (CISM, CISA, CCSP, CEH, OSCP, CRISC)<\/li>\n<li>Experience managing WAF deployments (Palo Alto, Cloudflare, AWS WAF)<\/li>\n<li>Infrastructure-as-code experience (Pulumi, Terraform)<\/li>\n<li>Kubernetes security knowledge<\/li>\n<li>SOAR platform experience<\/li>\n<li>DevSecOps or security automation background<\/li>\n<li>Scripting skills (Python, Bash) for security tooling and automation\u00a0<\/li>\n<\/ul>\n<p>Kikoff: Um unic\u00f3rnio da FinTech impulsionando o progresso financeiro com IA<br \/>Na Kikoff, nossa miss\u00e3o \u00e9 fornecer ferramentas financeiras radicalmente acess\u00edveis para ajudar os consumidores a obter seguran\u00e7a financeira. Somos um unic\u00f3rnio FinTech lucrativo e de alto crescimento que atende a milh\u00f5es de pessoas, muitas das quais est\u00e3o construindo cr\u00e9dito ou navegando pela vida de sal\u00e1rio em sal\u00e1rio. Com tecnologia inovadora e IA, simplificamos a cria\u00e7\u00e3o de cr\u00e9dito, reduzimos as d\u00edvidas e expandimos o acesso a oportunidades financeiras para aqueles que mais precisam delas. Fundada em 2019, a Kikoff tem sede em S\u00e3o Francisco e conta com o apoio de investidores de capital de risco de primeira linha e do astro da NBA Stephen Curry.<\/p>\n<p>Por que Kikoff:<\/p>\n<p>Esta \u00e9 uma startup de fintech para consumidores, e voc\u00ea trabalhar\u00e1 com empreendedores em s\u00e9rie que criaram marcas de consumo fortes e produtos inovadores. Valorizamos a responsabilidade extrema, a comunica\u00e7\u00e3o clara, um forte senso de habilidade e o desejo de criar um trabalho e rela\u00e7\u00f5es de trabalho duradouros. Sim, voc\u00ea pode construir um neg\u00f3cio empolgante E ter um impacto na vida real do cliente real.<\/p>\n<p>Cobertura m\u00e9dica, odontol\u00f3gica e oftalmol\u00f3gica - a Kikoff cobre o custo total do seguro de sa\u00fade para o funcion\u00e1rio!<\/p>\n<p>Patrim\u00f4nio significativo na forma de RSUs<\/p>\n<p>Pol\u00edtica de f\u00e9rias flex\u00edvel para ajud\u00e1-lo a recarregar as baterias<\/p>\n<p>Remunera\u00e7\u00e3o competitiva com base na experi\u00eancia, composta de base + patrim\u00f4nio l\u00edquido + benef\u00edcios<\/p>\n<p>Localiza\u00e7\u00e3o: H\u00edbrido, 3 dias no local em S\u00e3o Francisco, CA.<\/p>\n<p>Patroc\u00ednio de visto dispon\u00edvel: A Kikoff est\u00e1 disposta a oferecer patroc\u00ednio para vistos H1-B e green cards dos EUA para talentos excepcionais.<\/p>\n<p>Declara\u00e7\u00e3o de oportunidades iguais de emprego<\/p>\n<p>A Kikoff Inc. \u00e9 uma empregadora que oferece oportunidades iguais de emprego. Estamos comprometidos com o cumprimento de todas as leis federais, estaduais e locais que oferecem oportunidades iguais de emprego e consideramos candidatos qualificados independentemente de ra\u00e7a, cor, religi\u00e3o, credo, g\u00eanero, nacionalidade, idade, defici\u00eancia, status de veterano, estado civil, gravidez, sexo, express\u00e3o ou identidade de g\u00eanero, orienta\u00e7\u00e3o sexual, cidadania ou qualquer outra classe legalmente protegida.<\/p>\n<p>Consulte os itens a seguir para obter mais informa\u00e7\u00f5es.<\/p>\n<p>If you need reasonable accommodation for a job opening please connect with us at\u00a0talent@kikoff.com\u00a0and describe the specific accommodation requested for a disability-related limitation. Reasonable accommodations are modifications or adjustments to the application or hiring process that would enable you to fully participate in that process.<\/p>\n<p>Portaria Fair Chance de S\u00e3o Francisco: De acordo com a San Francisco Fair Chance Ordinance, a Kikoff considerar\u00e1 para emprego candidatos qualificados com registros de pris\u00e3o e condena\u00e7\u00e3o.<\/p>\n<p>Compensation Range: $200K &#8211; $260K<\/p>","protected":false},"author":10,"featured_media":0,"template":"","meta":{"_bbp_topic_count":0,"_bbp_reply_count":0,"_bbp_total_topic_count":0,"_bbp_total_reply_count":0,"_bbp_voice_count":0,"_bbp_anonymous_reply_count":0,"_bbp_topic_count_hidden":0,"_bbp_reply_count_hidden":0,"_bbp_forum_subforum_count":0,"pmpro_default_level":"","_promoted":"","_job_location":"California","_application":"https:\/\/www.simplyhired.com\/job\/xvnuYNXqw1VOtrpaTkiTHtdq6y3lCPCZxfuvuj_xHXN4QkDHoQ2ysA","_company_website":"","_company_tagline":"","_company_twitter":"","_company_video":"","_filled":0,"_featured":0,"_remote_position":0,"_job_salary":"","_job_salary_currency":"","_job_salary_unit":"","_joinchat":[]},"job-types":[398],"class_list":{"0":"post-13362","1":"job_listing","2":"type-job_listing","3":"status-publish","4":"hentry","5":"pmpro-has-access","7":"job-type-h1-b"},"_links":{"self":[{"href":"https:\/\/kick-start.us\/pt-br\/wp-json\/wp\/v2\/job-listings\/13362","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kick-start.us\/pt-br\/wp-json\/wp\/v2\/job-listings"}],"about":[{"href":"https:\/\/kick-start.us\/pt-br\/wp-json\/wp\/v2\/types\/job_listing"}],"author":[{"embeddable":true,"href":"https:\/\/kick-start.us\/pt-br\/wp-json\/wp\/v2\/users\/10"}],"wp:attachment":[{"href":"https:\/\/kick-start.us\/pt-br\/wp-json\/wp\/v2\/media?parent=13362"}],"wp:term":[{"taxonomy":"job_listing_type","embeddable":true,"href":"https:\/\/kick-start.us\/pt-br\/wp-json\/wp\/v2\/job-types?post=13362"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}