Security Operations Manager

About the Role
At the heart of our mission is delivering business value through strong leadership and a steadfast commitment to security compliance. In this role, you'll play a pivotal part in fostering a collaborative environment where adherence to industry best practices is paramount.

You will develop and implement robust security compliance programs, partnering with both internal and external teams to conduct thorough assessments and audits. Your guidance will be crucial in ensuring the safety and integrity of our systems, networks, and data.

With a deep understanding of compliance requirements and security protocols, your primary focus will be safeguarding our business from security and compliance risks while empowering us to innovate and grow with confidence.

Ranked number 14 by Seattle Business Magazine in the ‘Washington’s 100 Best Companies to Work For’ list in the large companies category for 2023; and named as one of BuiltIn ‘Best Places to Work’ in both Seattle and Dallas for 2024.

Benefits and Compensation

• 100% employer-paid premiums for Medical HDHP Plan, Dental, and Vision for employee
• 70% employer-paid premiums for Medical PPO Plan for employees, and Medical, Dental, and Vision for dependents
• 401K match
• Hybrid work model - 3 days in the office / 2 days remote each week
• 12 paid Company Holidays
• 2 paid Volunteer Time Off days
• 20 days PTO, to start, increases with tenure and seniority
• Paid parental and adoption leave
• Compensation Range: $147,074 - $208,000, depending on location

Compensation ranges are determined by role and location. The range displayed on each job posting reflects the pay range for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training.

What You'll Do

• Develop and implement comprehensive security compliance strategies and programs to meet regulatory requirements, industry standards, and best practices.
• Coordinate and support security compliance audits and assessments conducted by internal and external auditors, ensuring timely remediation of identified issues.
• Collaborate with cross-functional teams to integrate security compliance requirements into business processes, systems, and projects.
• Understand and exhibit the company's core values.
• Provide expert advice and guidance to stakeholders, including senior management, IT teams, and business units, on security and security compliance matters.
• Assess vendors, suppliers, and potential partners for their adherence to strong security practices and compliance obligations as part of the procurement process.
• Stay up-to-date with emerging security regulations, standards, and trends, and recommend necessary actions to maintain compliance.
• Monitor and analyze changes in relevant security laws and regulations, and proactively identify potential impact on the organization's security posture.
• Lead the development and maintenance of security compliance policies, procedures, and standards, ensuring their alignment with industry best practices.
• Collaborate with internal and external stakeholders, such as legal counsel and regulatory bodies, to address security compliance-related issues and ensure effective communication.
• Provide oversight and guidance in incident response activities related to security compliance, including documentation, root cause analysis, and remediation.
• Participate in the recruitment of new Security Team staff (sales pitch, technical screens).
• Training, coaching and mentoring more junior or new Security team staff unfamiliar with the area or processes to not only understand what they are doing, but also why they are doing it.
• Communicate status and risk updates to stakeholders in regular and timely manner
• Work as an exceptional mentor, and a trusted advisor for both team members and leaders alike. Deal with conflict in a mature and fair way.
• Work with Engineering , Product, Operations and other parts of the business to review requirements and proposed solutions, and to provide input into these processes (which may include ideation, algorithms, processes and feature design). This work may constitute intellectual property that belongs to Pushpay.
• Be involved in long term strategy (including ideation, reviewing and refinement) which includes the potential to develop forward looking design and strategy which may in turn produce intellectual property that belongs to Pushpay.
  

What You'll Bring

• 10+ years of relevant experience; “relevant” being: Develop and implement comprehensive security compliance strategies and programs to meet regulatory requirements, industry standards, and best practices
• Professional certifications related to security compliance, such as CISSP, CISA, CISM, or equivalent, are highly desirable.
• Provide oversight and guidance in incident response activities related to security compliance, including documentation, root cause analysis, and remediation.'
• Proven experience in developing and implementing security compliance programs in complex organizational environments.
• Deep understanding of security risk management principles and methodologies, with the ability to assess and mitigate compliance risks effectively.
• Excellent analytical and problem-solving skills, with the ability to identify compliance gaps and recommend practical solutions.
• Experience in coordinating and managing security compliance audits and assessments, including working with auditors and ensuring compliance with audit requirements.
•  Knowledge of security technologies, tools, and practices, with the ability to assess their compliance with relevant regulations and standards.
• Familiarity with security incident response procedures and practices, including the ability to investigate and remediate security incidents related to compliance.
• Strong communication and interpersonal skills, with the ability to effectively engage and influence stakeholders at all levels of the organization.
• Solid project management skills, including the ability to prioritize tasks, manage timelines, and deliver results within given deadlines.
• Excellent communication skills, both written and verbal
• Generous with your time and knowledge, sharing and collaborating with others
• Discusses work in both technical and business-impact terms
• Strong abilities to influence without requiring reporting authority
• Able to facilitate cross-team work and are influential beyond your individual group.
• Capable of driving groups of disparate interests to decisions, and then clearly communicate and see those decisions through to impact
• Sought-after for guidance across the company
• Track record of anticipating problems that will fall out of major process, decisions, solutions to overcome those problems
• Very strong communicator and can simplify technical concepts to explain them to non-technical partners, and take business direction and explain it to the technology team in a way that inspires and guides them

Pushpay is committed to equal opportunity. We value and embrace diversity and inclusion of all Team Members.

If you have a disability under the Americans with Disabilities Act or similar law, or you require religious accommodation, and you wish to discuss potential accommodations related to applying for employment at Pushpay, please contact peopleteam@pushpay.com.

About Pushpay

Pushpay helps organizations and communities come to gather & stay connected, strengthening community, connection, and belonging through our suite of mobile apps, management software, and giving technology. Our 550 Pushpay teammates support 10,000+ customers as they drive social good, and we’re honored to have processed over $15 billion in charitable giving. We’re growing fast, including some exciting acquisitions in recent years, and we need driven talent. Join Pushpay and grow with us!