Engineering Manager, Security

  • Full Time
  • Remote
  • Senior Level

Website Reverb

Reverb is a leading online marketplace for buying and selling new, used, and vintage musical instruments. Since launching in 2013, Reverb has grown into a vibrant community of buyers and sellers all over the world. By focusing on inspiring content, price transparency, musician-focused eCommerce tools, a music-savvy customer service team, and more, Reverb has built an online destination where the global music community can connect over the perfect piece of music gear. In 2019 Reverb was acquired by Etsy. With the added support of one of the largest online marketplaces, we are on a path to becoming the go-to site for musicians everywhere.

Our core belief is that music makes the world a better place. Through Reverb Gives, a portion of every sale provides students, teachers, and leaders of music programs across the world with instruments they need.

We’re looking for an experienced Engineering Manager inside the Infrastructure Engineering group to lead our security engineering team. Security engineering at Reverb is responsible for leading, designing, and building secure systems and practices for our e-commerce platform. They are highly involved in planning technical systems, designing secure practices, governance, and proactive engagement with engineering and product organizations.

The Security Engineering Manager leads our security engineers and analysts in protecting, planning, and building scalable hardened systems across our architecture. You’ll be leading these security professionals by contributing to project oversight and planning, security assessments, long-term scope planning, proactive and preventative approaches, and being a collaborative management professional that can quickly lead our organization to make safe and practical decisions.

We are open to remote hires within multiple states as well as candidates locally in Chicago, IL. For candidates who will work remotely visit this link for a list of approved locations.

Responsibilities

Day to day management of security engineers and analysts at Reverb
Security sprint planning and retrospectives
Collaborate with other engineering managers to achieve roadmap goals
Perform security reviews, audits, assessments, and remediations actions or reporting
Engage in highly technical architecture feedback and design reviews
Hands-on engagement with git, DevOps, and security tools to help bolster understanding with other technical teams
Partner in security leadership with the Etsy House of Brands, which includes Etsy, Depop, and Elo7
Advise crucial GRC, technical, and policy to engineering leadership

Qualifications
2+ years leading or supervising security teams
2+ years of hands-on experience with AWS, Terraform, Helm, Kubernetes, and other generalized DevOps tooling
4+ years experience in the security domain with technical expertise or contributions
Track record of crafting, developing, and handling security projects
Ability to develop policy, process, and procedures to apply to engineering organizations
Detection and response concepts with SIEM, EDR, Incident Management, IDS, and WAF
Experience with Vuln Management, CICD Security, BugBounty
Regulatory experience such as PCI, FedRAMP, SOX, etc.
Experience with JIRA and Confluence
Experience with Git

Nice to Have

4+ years of management
Deep networking and threat modeling experience
Experience with Nucleus Sec
Experience with CrowdStrike platforms
Deep experience with GitHub and GitHub security controls
Hands-on experience with AWS EKS, Rancher, or other Kubernetes platforms

Additional Information
Reverb offers compensation packages that include base, bonus, and equity in the form of Etsy restricted stock units. Some of our key benefits include:

100% paid premiums for medical, dental, and vision coverage for the employee, spouse or domestic partner, and all eligible dependents. Medical coverage includes gender affirming care coverage (you read it right: no premiums!)
Life, AD&D, and supplemental long-and short-term disability insurance
A matching 401(k)
A generous PTO policy that includes vacation, sick/mental health days plus 11 paid holidays and two floating holidays
18 weeks of gender-neutral parental leave for the birth or adoption of a child
Up to $25,000 reimbursement of adoption and/or surrogacy related expenses
Paid sabbatical program
$1,000 annual work/life stipend
Access to free supplemental online mental health services and care
Ways to give back to your community through a charitable contribution match and volunteer time off

At Reverb, we believe that a diverse, equitable and inclusive workplace makes us a more relevant and resilient company. We welcome people from all backgrounds, ethnicities, cultures, and experiences. Reverb is an equal opportunity employer. We do not discriminate on the basis of race, color, ancestry, religion, national origin, sexual orientation, age, citizenship, marital or family status, disability, gender identity or expression, veteran status, or any other legally protected status. We will ensure that individuals with disabilities are provided a reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment.

We know that the impostor syndrome and confidence gap are real. Please do not hesitate to apply!

To apply for this job please visit smrtr.io.