Director, Security Engineering

| Austin
Company Description

Optimizely is the world's leader in customer experience optimization, allowing businesses to dramatically drive up the value of their digital products, commerce and campaigns through its best in class experimentation software platform. By replacing digital guesswork with evidence-based results, Optimizely enables product and marketing professionals to accelerate innovation, lower the risk of new features, and drive up the return on investment from digital by up to 10X. Over 26 of the Fortune 100 companies choose Optimizely to power their global digital experiences. Optimizely’s impressive customer list includes eBay, FOX, IBM, The New York Times and many more global enterprises.

Job Description

Lead the security engineering team and the software security program at Optimizely. The security engineering team supports Optimizely’s product development team to ensure that security is baked in throughout our infrastructure and software development lifecycle.

How you will make an impact:

  • Hire and retain talent to grow the security engineering team
  • Maximize the impact of our highly-leveraged security engineers across engineering
  • Support Optimizely’s product development organization by facilitating the software security program
  • Build and maintain product security strategy, roadmap and metrics
    • Security governance with software security metrics, security OKRs for engineering teams and quarterly security service delivery reviews
  • Support security risk management
  • Participate in the Security and Privacy steering committee; periodically update senior executive staff on product security initiatives
  • Support Optimizely’s compliance programs - PCI, ISO 27001, SOC 2 via the development, implementation and governance of common controls for our products and infrastructure
  • Partner with the Privacy Director to support Optimizely’s privacy engineering efforts
  • Facilitate information security assessment and testing, including:
    • penetration testing
    • vulnerability scanning and mitigation
    • secure coding and testing practices
    • authentication, access, and authorization controls
  • Build monitor/alert infrastructure for intrusion prevention
  • Maintain a strong customer focus and translate customer needs into security, privacy and compliance features and public facing documents
  • Answer customers’ questions about security

Qualifications

  • 10+ years of experience in the domains of information security and software engineering
  • 5+ years of people management experience
  • Knowledge and experience with Internet application and mobile app security practices and techniques, especially OWASP
  • Knowledge and experience in maintaining operational computer and network security, applied cryptography, intrusion detection and prevention, identity and access management, application security, automated security patching, and vulnerability scanning systems
  • Experience administering information security programs including risk assessments, designing security architectures, developing policies, gathering metrics, and reporting status
  • Professional experience with information security in enterprise SaaS services strongly preferred
  • Experience championing the adoption of security into the SDLC via process, CI/CD automation and formal security reviews of new products.
  • Experience working in an engineering culture that emphasizes DevOps, and continuous delivery.
  • Experience with defining and implementing security in cloud environments (especially AWS or GCP)
  • Ability to cooperatively and effectively work with people from all organizational levels
  • Excellent written and verbal communication skills; proven security program and project management skills
  • Bachelor’s Degree in Computer Science or equivalent experience

Additional Information

At Optimizely, we embody inclusion and embrace diversity. We believe in work/life balance and bringing our true selves to work. To that end, we offer best-in-class perks and benefits that support our Optinauts along their career journey with us. Read more about our culture at optimizely.com/careers.

Optimizely is an equal opportunity employer and makes employment decisions on the basis of merit. Optimizely prohibits discrimination based on race, color, religion, sex, sexual identity, gender identity, marital status, veteran status, nationality, citizenship, age, disability, medical condition, pregnancy, or any other unlawful consideration. All your information will be kept confidential according to EEO guidelines.

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Read Full Job Description

Technology we use

  • Engineering
    • JavaLanguages
    • JavascriptLanguages
    • PythonLanguages
    • jQueryLibraries
    • ReactLibraries
    • AngularJSFrameworks
    • HadoopFrameworks
    • Node.jsFrameworks
    • SAP HANADatabases

Location

3300 N I-35, Austin, TX 78705

An Insider's view of Optimizely

How would you describe the company’s work-life balance?

Optimizely is also a place where work-life balance is a real thing. Unlimited vacation means that I’m trusted to take time off when I need it. I’ve also been able to work remotely from Tahoe so that I can drive up when there’s less traffic, and from Boston so that I can spend time with my family.

Lauren

Client Engineer

What does your typical day look like?

I joined Optimizely to work on a product I loved using. It was fitting that my first project was fixing a pain point I had experienced as a customer! Not only was it satisfying to deliver a feature that I knew was going to help my colleagues at a previous company, but I was also able to use an awesome cloud native AWS tech stack to deliver it.

Ben

Sr. Software Engineer

What makes someone successful on your team?

Software engineering here isn’t about someone going off on their own with a problem and coming back with a solution. We design solutions as a team of individuals, each bringing their perspective to the table. I’ve found this way of designing has helped me grow as engineer over the years and to deliver the best results possible to our customers.

Nick

Backend Engineer

How do you empower your team to be more creative?

As a leadership team, we are deeply committed to creating a culture based on inclusion, experimentation, innovation, and feeling empowered to take risks. To be successful, we have to be exceptional performers. And to be exceptional performers, we have to have passionate people driving the way.

Erin

Chief People Officer

What are some things you learned at the company?

It inspires a lot of pride knowing that I work on the best in class experimentation product and one that brings real ROI to some of the world's largest global brands . I didn't realize how much I cared about products until I joined Optimizely.

Jess

Senior Software Engineer

What are Optimizely Perks + Benefits

Optimizely Benefits Overview

At Optimizely, we offer a wide array of benefits and perks to help our employees strike just the right balance between work time and personal time. We’re all about optimizing productivity by maximizing joy.

Culture
Volunteer in local community
Partners with Nonprofits
Eat lunch together
Intracompany committees
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Open office floor plan
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Dental Benefits
Vision Benefits
Health Insurance Benefits
Wellness Programs
Onsite Gym
Retirement & Stock Options Benefits
401(K)
Company Equity
Child Care & Parental Leave Benefits
Generous Parental Leave
We provide up to 17 weeks of parental leave for the primary caretaker. Acme Co. also provides 17 weeks of leave for the secondary caretaker.
Family Medical Leave
Vacation & Time Off Benefits
Unlimited Vacation Policy
Paid Holidays
Perks & Discounts
Casual Dress
Commuter Benefits
Company Outings
Free Daily Meals
Game Room
Stocked Kitchen
Some Meals Provided
Happy Hours
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
Diversity Program
Lunch and learns
Acme Co. hosts lunch and learn meetings on occasion.
Promote from within
Time allotted for learning
More Jobs at Optimizely10 open jobs
All Jobs
Dev + Engineer
Operations
Project Mgmt
Sales