We are looking for an experienced Security professional who will help lead the evolution of security at Bread. 

• Web API / Web Application pentesting and configuration: SAST, DAST, Manual, Burpsuite, WAF, DDoS
• Vulnerability Management: vuln scanners (Qualys), engaging engineering in remediation, CVSS scoring and prioritization
• Server hardening and configuration: IDS, OS configuration
• AWS Cloud Security: experience leveraging both AWS and non-AWS tools to assess security posture and monitor cloud activity
• SIEM / TIP / SOAR: experience using Splunk, Panther, MISP and similar tools
• Containerization & Kubernetes
• Secure SDLC: artifact, dependency and container scanning
• Data Governance: data classification, encryption standards
• Participate in Security on call: schedule coordination, incidents and escalations 
• Experience working with geographically distributed engineering teams
• Experience in threat identification and using threat modeling techniques