Senior Director of Cybersecurity
At OnDeck, we make small business a big deal. We’re improving the world’s economic landscape by changing the way small businesses access capital. We care intensely about each other, our company and the customers we serve, and are committed to making every day count.
Technology at OnDeck is a mix of building world-class user experiences for our partners and direct customers, data processing to enable underwriting model development and real-time lending decisions, automating operational and compliance workflows, and generating precise money movements and calculations to service our customers. We have an emphasis on scalability, security, reliability and accuracy.
In this position you will have tremendous impact to take our cybersecurity program to the next level. You will lead a group of direct reports in security operations and application security. While not a ground up build, there is so much opportunity to grow our practice with a brilliant, energized team.
As the Sr. Director of Cybersecurity at OnDeck, you will:
- Own the planning and delivery of cybersecurity services for OnDeck
- Set cybersecurity strategy
- Oversee and participate in security audits, security assessments, tabletop exercises, pentesting engagements and vendor risk assessment
- Improve risk management capabilities to ensure personnel, policies, processes, and technologies achieve a cost-effective and acceptable level of loss exposure
- Work with the business to build S-SDLC best practices into all stages of the development process
- Provide guidance, education and communication to foster and maintain a strong cybersecurity culture
- Manage a team responsible for Application Security, Incident Response, Security Engineering, Security Operations, Security Policy, Threat Intelligence, and Security Architecture
Necessary qualifications for success:
- Bachelor's Degree (or higher) in Computer Science or equivalent preferred
- 10+ years of cybersecurity leadership experience in banking or financial services
- Demonstrated technical aptitude in areas including network security, cloud security, identity access management, secure coding, incident response, threat hunting, offensive security, vulnerability management, digital forensics, data loss prevention, disaster recovery, business continuity, risk assessments
- Ability to build and support teams focused on Security Operations, Application Security, and Security Architecture
- Recent experience with Mergers & Acquisitions is highly preferred
- Working knowledge of audit and control standards such as ISO, SOC, GDPR
- Working knowledge of security and risk frameworks such as NIST CSF, FAIR, COBIT, CMMI
- Interoffice travel between sites to partner with cross-functional teams and drive cybersecurity initiatives
- Weekend and off-hour work may be required for incident management
About OnDeck:
As the largest online small business lender in the U.S. and a leading online lender in Canada serving more than 700 different industries, we have been trusted by approximately 100,000 small businesses by providing them with financing to help them build growing and thriving enterprises. Since 2007, we’ve issued over $10 billion in capital.
Join us as we enable small businesses to achieve their goals. At OnDeck, we’re reinventing small business financing. We care intensely about each other, our company and the customers we serve, and are committed to making every day count. We are small enough to be nimble and strong enough to make a big impact.
OnDeck believes that each and every team member plays an important role in our company’s success. That’s why we strive to provide you and your family with a competitive and comprehensive benefit program with a variety of options and opportunities. We offer:
- Generous Vacation
- Comprehensive Healthcare
- Educational Reimbursement
- 401k Matching
- Parental Leave
- Sports Teams
- Stocked Kitchens
- Loan Consolidation
We are going to ask you to talk about your accomplishments. Here are some of ours:
- Built in Colorado, Top 100 Digital Companies in Colorado, 2015, 2016, 2017
- Built in NYC’s 100 Best Places to Work, 2019
- Colorado SHRM Best Companies to Work For in Colorado, 2015
- Crain’s New York Best Places to Work, 2013, 2014, 2015
- Crain’s New York Business Fast 50, 2013, 2014, 2016, 2017
- Denver Business Journal Largest Technology Employers in Denver, 2019
- Denver Business Journal Best Places to Work, 2019
- FinTech Breakthrough Award – Best Overall LendTech Company, 2018
- Fortune 50 Best Workplaces for Diversity, 2016
- Fortune 50 Best Small and Medium Companies to Work For, 2016
- Fortune 30 Best Workplaces in Finance and Insurance, 2016
- Fortune.com and Great Place to Work 100 Best Workplaces for Millennials, 2015
- Fortune/Great Place To Work Great Rated! People’s Picks: 20 Great Workplaces in Financial Services, 2015
- Forbes’ America’s Most Promising Companies, 2013, 2014
- Great Place to Work Certification, 2017, 2018, 2019
- Inc. 500|5000, 2013, 2014
- Inc. Hire Power, 2013
- Lending Tree’s Top Rated Customer Satisfaction, Q1 2018
- Selling Power Magazine Best Company to Sell For, 2013, 2014, 2015, 2016, 2017, 2018
- US News & World Report, “Best Unsecured Business Loans of 2018” – Best for Term Loans
- Washington Post Top Places to Work, 2019
- WorldatWork, 2017 Seal of Distinction
As part of our dedication to maintaining an inclusive and diverse workforce, OnDeck provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, OnDeck complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
OnDeck expressly prohibits any form of workplace harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of OnDeck’s employees to perform their job duties may result in discipline up to and including discharge.
**No external recruiters or agents, please.**