Senior Director Of Security

Since its inception in 2003, driven by visionary college students transforming online rent payment, Entrata has evolved into a global leader serving property owners, managers, and residents. Honored with prestigious awards like the Utah Business Fast 50, Silicon Slopes Hall of Fame - Software Company - 2022, Women Tech Council Shatter List, our comprehensive software suite spans rent payments, insurance, leasing, maintenance, marketing, and communication tools, reshaping property management worldwide.

Our 2200+ global team members embody intelligence and adaptability, engaging actively from top executives to part-time employees. With offices across Utah, Texas, India, and the Netherlands, Entrata blends startup innovation with established stability, evident in our transparent communication values and executive town halls. Our product isn't just desirable; it's industry essential. At Entrata, we passionately refine living experiences, uphold collective excellence, embrace boldness and resilience, and prioritize diverse perspectives, endeavoring to craft a better world to live in.

Entrata is actively seeking a Senior Director of Security, primarily focusing on application security. This leadership position is dedicated to protecting our software and systems against cyber threats. The ideal candidate will be responsible for developing and executing a robust security strategy while leading a team of skilled security professionals.

As the Senior Director of InfoSec, you will play a central role in our organization, specifically entrusted with shaping and implementing a comprehensive application security strategy. Collaborating closely with senior leadership and key stakeholders, you will ensure the security and integrity of our software and systems. Additionally, you will oversee Security Operations (SecOps) and Infrastructure Security efforts, ensuring a holistic and integrated approach to safeguarding our organization. This role offers the opportunity to engage with cutting-edge technologies to enhance our resilience against cyber threats. We are looking for a dynamic leader with profound expertise in application security, coupled with the ability to think strategically and act decisively.

Responsibilities

• Develop and implement a comprehensive application security strategy.
• Oversee the identification and mitigation of vulnerabilities in software and systems.
• Lead and optimize Security Operations (SecOps) to proactively detect and respond to security incidents.
• Establish and enforce security policies and procedures for infrastructure components.
• Lead, mentor, and develop a team of security professionals responsible for Cloud Security, Corporate Security, Application Security and Security Operations.
• Foster a culture of security awareness and accountability within the organization.
• Conduct regular risk assessments to identify and prioritize potential threats.
• Develop and implement risk mitigation strategies in collaboration with key stakeholders.
• Work closely with senior leadership and key stakeholders to align security initiatives with business objectives.
• Communicate effectively with technical and non-technical audiences about security issues and solutions.

Minimum Qualifications

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• A minimum of 8 years of experience in Information Security, with at least 3 years in a leadership role.
• Proven experience in building and enhancing application security systems at a SaaS (Software as a Service) company.
• In-depth knowledge of application security best practices and industry standards.
• Demonstrated experience in leading Security Operations teams.
• Strong understanding of infrastructure security principles.

Preferred Qualifications

• Advanced degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or other relevant security certifications.
• Experience working in a SaaS or cloud-based environment.
• Familiarity with threat intelligence and incident response.
• Deep understanding of regulatory compliance requirements, such as SOC2 and PCI-DSS.
• Expertise in cloud security technologies and best practices, such as AWS, GCP, or Azure.
• Profound comprehension of software development methodologies and practices.
• Strong understanding of network security and network architecture.
• Proven experience in leading incident response and business continuity planning.
• Adept in security automation and orchestration tools.