REEFrsquos mission is to connect the world to your block. We transform underutilized urban spaces into neighborhood hubs that connect people to locally curated goods, services, and experiences. With an ecosystem of 4,500 locations and a team of 15,000 people, REEF is the largest operator of mobility, logistics hubs, and neighborhood kitchens in North America. Together we are leveraging the power of proximity to keep our communities moving forward in a sustainable and thoughtful way. REEF is looking for a strong security engineering leader who can lead a team of the worlds best security engineering talent and develop both strong security capability but also secure code. What Yoursquoll Do Able to set a vision and mission for a team and the development of an effective annual strategy. Able to sell this strategy! Lead a team of technical experts ranging from administrators, engineers, architects and advisors A strong focus on internal customer experience and tracking of NPS scoring against these Provide weekly reports on functional areas and performance improvements including benchmark against capability and maturity Able to manage a secure code pipeline in a completely automated, frictionless fashion Smart tool selection and managing outcomes and developer training of outputs of tools such SAST, DAST, IAST SCA Ability to drive security metrics and pre-conditioned alerting into security and REEF products Drive a security microservices model Establish and lead a security advisory service for safe deployment of new tools and services into the organization Take part in bi-annual tabletop and red team exercises Establishment and management of a bounty program Integration and involvement in security champion and security training programs Thought leadership and the enhancement of open source security tooling for improving the technology space Development of an IAM capability and logging reference framework Governance of secure code and secure infrastructure Respond and execute against various governance and compliance asks Development of a strong risk management and reporting culture! What We Want From You A strong understanding of security frameworks, standards and where and when to apply them Ability to integrate technical data into executive reports Methodical and detail driven Strong reporting skills Ability to manage directly and indirectly A passion for cyber security Dedicated to delivering results and meeting deadlines Able to see the big picture and create strategic plans to execute against it Cyber security experience and ability to consume threat intelligence and apply defense in depth strategies against this Strong coding knowledge Excited about chaos engineering and development of micro services Experienced in working with IAST, DAST, SCA and SAST tooling Familiar with operational models and integration of effective security services into DevOps team and SRE teams BSc in Computer Science or equivalent Knowledge in and application of zero trust architecture CISSP and 10 years of experience What Wersquoll Provide Medical Dental Vision Life and Disability 401K Paid Time Off (PTO) PHYSICAL DEMANDS The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Frequently operate small office equipment such as a computer, tablet, and copierprinter, telephone. Work is performed in a professional office environment. WORKING CONDITIONS Work is performed indoors for extended periods of time including up to the entire duration of shift. REEF Technology is an equal opportunity employer, and we value diversity at our company. REEF does not discriminate on the basis of race, religion, color, sex, national origin, gender identity, gender expression, sexual orientation, age, marital status, veteran status, or disability status. REEF complies with all applicable equal employment opportunity legislation in each jurisdiction in which it operates.