WHAT YOU'LL DO
- Lead and grow a team of AppSec, Infra Sec, and Endpoint Security engineers (currently 3 engineers).
- Own the end-to-end security operations function: detection, monitoring, incident response, and remediation across cloud, application, and endpoint layers.
- Define and execute operational roadmaps for Application Security, Infrastructure Security, and Endpoint/Office Security.
- Drive adoption and administration of security tooling: EDR, SIEM, DAST/SAST, WAF, VPN, DNS security, and Okta.
- Oversee cloud security posture across AWS environments.
- Run and coordinate security incident investigations: root cause analysis, containment, remediation, and post-mortems.
- Partner with Infrastructure, IT Operations, and Engineering teams to implement and improve security controls.
- Maintain security documentation: runbooks, configurations, playbooks, and operational procedures.
- Support compliance requirements (SOC 2, ISO 27001) from the technical security side.
- Represent cyber operations in cross-functional initiatives and contribute to strategic planning with the Head of Security.
TO SHINE IN THIS ROLE
- You'll need: 7+ years in technical security roles across AppSec, Infra Sec, or Endpoint Security.
- 3+ years in a lead or management role with direct reports.
- Experience with developer security tooling: SAST, SCA, secrets scanning, and DAST integration into CI/CD pipelines.
- Hands-on experience operating and administering security tooling: EDR, SIEM, DAST/SAST, WAF, VPN, and DNS security platforms.
- Strong AWS cloud security knowledge: IAM/SSO, Security Hub, GuardDuty, CloudTrail, and AWS Config.
- Solid understanding of application security fundamentals: OWASP Top 10, SDLC security integration, and threat modelling.
- Experience with endpoint security: macOS and Windows hardening, MDM (Jamf or Microsoft Intune).
- Ability to lead security incident response: coordinating teams, driving root cause analysis, and communicating findings clearly.
- Strong communication skills — able to translate security risk into business terms for non-technical stakeholders.
- Fluent English communication skills, both written and verbal.
WHAT WE OFFER
- Hybrid onboarding to start work remotely and relocation support for you and your family.
- Comprehensive health insurance for both you and your family.
- Professional development budget for conference tickets, online courses, and other relevant resources to help you grow.
- Flexible benefits package to tailor perks that matter most for you.
- Hybrid work and generous leave options to prioritize your work-life balance.
- In-office perks, including free meals and snacks.
- Company-funded sport activities, annual offsites and team-building events.
- Manychat is an Equal Opportunity Employer with a commitment to diversity and inclusion.
Tech stack
Includes AWS security services (IAM/SSO, Security Hub, GuardDuty, CloudTrail, AWS Config), EDR, SIEM, DAST/SAST, WAF, VPN, DNS security, Okta, and general security tooling.
