Information Security Manager - San Francisco - Kikoff Inc

    Kikoff Inc
    Kikoff Inc San Francisco

    1 week ago

    Description
    ABOUT THE ROLE
    You'll be our first dedicated security leader, owning the technical execution of our security and compliance program. You'll drive SOC 2 and PCI DSS compliance, manage our vulnerability program, and build security capabilities that enable our engineering teams to move fast while staying secure. This is a hands-on role-you'll design controls, write policies, respond to incidents, and work directly with auditors.
    This is initially an individual contributor role with high impact and visibility. As our security program matures, you'll have the opportunity to build and lead a security team.
    To be direct: this is a building role, not a governance role. You'll write code, configure AWS infrastructure, and implement controls yourself.
    IN THIS ROLE, YOU WILL
    Manage Security Operations
    • Build security automation: write IaC (Terraform/Pulumi) for security controls, implement PAM/JIT access workflows, create automated vulnerability remediation pipelines.
    • Establish vulnerability management program with defined SLAs and remediation workflows
    • Own end-to-end vulnerability management: identify, assess, prioritize, and drive remediation to completion across infrastructure and applications
    • Manage external penetration testing program with third-party vendors, including scoping, assessment review, and remediation tracking
    • Perform internal penetration testing and security assessments of applications, APIs, and infrastructure
    • Build SIEM detection rules, security dashboards, and alert triage processes
    • Develop and test incident response runbooks
    • Conduct threat modeling for critical systems and architectural changes
    • Lead security assessments of new technologies and third-party integrations
    Own Compliance
    • Lead SOC 2 Type II and PCI DSS programs through successful audit
    • Design and implement security controls without blocking velocity
    • Serve as primary technical contact for external auditors and assessors
    • Manage third-party vendor security assessments and ongoing monitoring
    • Build automated evidence collection and continuous compliance monitoring
    • Report security metrics and program status to executive leadership
    Enable & Collaborate
    • Partner with platform engineering to implement security roadmap: AWS landing zone design, PAM/JIT workflows, account segmentation, disaster recovery testing
    • Enforce enterprise security controls (SSO, secrets management, RBAC)
    • Build and deliver security awareness training program for all employees
    • Develop and maintain security policies, standards, and procedures
    • Translate compliance requirements into actionable engineering tasks and drive completion
    YOU HAVE
    Security & Compliance:
    • 5+ years in information security, with 2+ years in fintech or highly regulated industry
    • CISSP certification (or actively pursuing - must obtain within 12 months of hire)
    • Hands-on experience leading SOC 2 and PCI DSS audits from start to finish
    • Strong incident response background-you've led real security incidents
    • Experience with vulnerability management platforms (Wiz, Snyk, Tenable)
    Technical Skills:
    • Solid understanding of AWS security: IAM, Security Hub, GuardDuty, CloudTrail, KMS
    • Experience with SIEM platforms (Splunk, Datadog, Elastic)-you can write detection rules and build dashboards
    • Hands-on experience with vulnerability assessment and penetration testing tools (Burp Suite, Nessus, Qualys, or similar)
    • Ability to read code (Ruby, JavaScript, Python) and assess security implications
    • Knowledge of web application security, API security, and OWASP Top 10
    • Understanding of access control patterns (PAM, SSO, RBAC, least privilege)
    Core Competencies:
    • Strong communication-you can explain risks to engineers and executives alike
    • Pragmatic risk management in fast-paced environments
    • Self-starter who builds programs from scratch
    • Collaborative mindset-security as enabler, not blocker
    • Ability to drive remediation to completion across teams
    NICE TO HAVE
    • Additional certifications (CISM, CISA, CCSP, CEH, OSCP, CRISC)
    • Experience managing WAF deployments (Palo Alto, Cloudflare, AWS WAF)
    • Infrastructure-as-code experience (Pulumi, Terraform)
    • Kubernetes security knowledge
    • SOAR platform experience
    • DevSecOps or security automation background
    • Scripting skills (Python, Bash) for security tooling and automation
    Kikoff: A FinTech Unicorn Powering Financial Progress with AI
    At Kikoff, our mission is to provide radically affordable financial tools to help consumers achieve financial security. We're a profitable, high growth FinTech unicorn serving millions of people, many of whom are building credit or navigating life paycheck to paycheck. With innovative technology and AI, we simplify credit building, reduce debt, and expand access to financial opportunities to those who need them the most. Founded in 2019, Kikoff is headquartered in San Francisco and backed by top-tier VC investors and NBA star Stephen Curry.
    Why Kikoff:
    This is a consumer fintech startup, and you will be working with serial entrepreneurs who have built strong consumer brands and innovative products. We value extreme ownership, clear communication, a strong sense of craftsmanship, and the desire to create lasting work and work relationships. Yes, you can build an exciting business AND have real-life real-customer impact.
    Medical, dental, and vision coverage - Kikoff covers the full cost of health insurance for the employee
    Meaningful equity in the form of RSU's
    Flexible vacation policy to help you recharge
    Competitive pay based on experience consisting of base + equity + benefits
    Location: Hybrid, 3 days onsite in San Francisco, CA.
    Visa sponsorship available: Kikoff is willing to provide sponsorship for H1-B visas and U.S. green cards for exceptional talent.
    Equal Employment Opportunity Statement
    Kikoff Inc. is an equal opportunity employer. We are committed to complying with all federal, state, and local laws providing equal employment opportunities and considers qualified applicants without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, marital status, pregnancy, sex, gender expression or identity, sexual orientation, citizenship, or any other legally protected class.
    Please reference the following for more information.
    If you need reasonable accommodation for a job opening please connect with us at and describe the specific accommodation requested for a disability-related limitation. Reasonable accommodations are modifications or adjustments to the application or hiring process that would enable you to fully participate in that process.

  • Security Manager

    1 week ago

    Only for registered members San Francisco

    Net2Source is an award-winning total workforce solutions company providing staffing solutions to address talent gaps. · ...

  • Information Security Manager

    1 month ago

    Only for registered members San Francisco, CA

    You'll be our first dedicated security leader owning the technical execution of our security and compliance program. · ...

  • Cyber Security Manager

    2 days ago

    Only for registered members San Francisco $150,000 - $180,000 (USD)

    We are seeking a highly skilled Cyber Security Manager to lead our organization's security efforts, with a strong emphasis on securing the Microsoft 365 platform and enterprise network infrastructure. · Develop and implement best-in-class security policies, configurations, and go ...

  • Security Compliance Manager

    2 days ago

    Only for registered members San Francisco

    We are looking for a highly motivated Security Compliance Manager with a deep security and compliance background to lead system development and process improvement. · Manage Hive's current risk management programManage external and internal auditsImplement ISMS in coordination wi ...

  • Information Security Manager

    1 week ago

    Only for registered members San Francisco

    We are seeking a highly skilled Information Security Manager to join our team at Kikoff. As the first dedicated security leader, you will own the technical execution of our security and compliance program and drive SOC 2 and PCI DSS compliance. · Security & Compliance:5+ years in ...

  • Security Assistant Manager

    1 month ago

    Only for registered members San Francisco, CA

    The Security Assistant Manager is responsible for supporting the Director of Security with the implementation and management of the Residential Security, Health & Safety, Fire, Life & Safety programs and operations. · ...

  • Security Project Manager

    3 weeks ago

    Only for registered members San Francisco, CA

    We are seeking a highly experienced Security Project Manager who is passionate about project management to lead the delivery of physical security systems for new office builds. · ...

  • Manager, Security Architecture

    1 month ago

    Only for registered members San Francisco, CA

    Lambda's mission is to make compute as ubiquitous as electricity and give everyone the power of superintelligence. · ...

  • Cyber Security Manager

    2 days ago

    Only for registered members San Francisco, CA

    The Cyber Security Manager is responsible for identifying risks to the confidentiality, integrity and availability of our clients products and services. · • Articulate technical and security requirements to departments/business groups · • Assist in the creation of the Security St ...

  • Senior Manager, Security

    3 weeks ago

    Only for registered members San Francisco $157,000 - $196,000 (USD)

    We'd love to have you apply, even if you don't feel you meet every single requirement in this posting. · Develop, implement and oversee Yelp's global physical security strategy and programs · Lead training education and communication initiatives to increase security awareness · ...

  • Senior Manager, Security

    3 weeks ago

    Only for registered members San Francisco, CA Remote job

    We're seeking a strategic and experienced Senior Manager to lead our Physical Security function ensuring the safety security and overall experience of Yelp employees and visitors across multiple sites and events while maintaining a seamless work environment that reflects our cult ...

  • Manager, Security Architecture

    1 month ago

    Only for registered members San Francisco $297,000 - $495,000 (USD)

    We're looking for an experienced manager to build and lead our security architecture team. · Lambda Security protects some of the world's most valuable digital assets: invaluable training data, model weights representing immense computational investments, and the sensitive inputs ...

  • Qualified Security Manager

    1 month ago

    Only for registered members San Francisco

    We are hiring a Qualified Security Manager to provide operational leadership for executive protection services and support the establishment and ongoing administration of OpenAI's state-licensed security entity (PPO). · Overseeing executive protection vendors supporting executive ...

  • Manager, Security Platform

    1 month ago

    Only for registered members San Francisco $297,000 - $495,000 (USD)

    We're looking for engineering managers who pair deep technical intuition with product sensibility and team-building excellence to build and lead a team of deeply security-aware software engineers dedicated to building and operating production-grade security platforms. · Hire, dev ...

  • Qualified Security Manager

    1 month ago

    Only for registered members San Francisco Full time

    The Corporate Security team at OpenAI is dedicated to ensuring the safety and security of our people and facilities. We are committed to maintaining a secure environment that enables our team to focus on advancing artificial intelligence in a responsible manner. · ...

  • Field Security Manager

    1 week ago

    Only for registered members San Francisco

    The Field Security Manager is crucial in our domestic security operations function. This position supports the development of customized security plans for each client based on their unique intake needs. · ...

  • Field Security Manager

    1 week ago

    Only for registered members San Francisco, CA

    The Field Security Manager is crucial in our domestic security operations function. This position supports the development of customized security plans for each client based on their unique intake needs. It is also responsible for supporting the director and deputy director with ...

  • Field Security Manager

    1 week ago

    Only for registered members San Francisco $130,000 - $150,000 (USD)

    Global Guardian protects and delivers employees and families from political, environmental, · and bad actor threats worldwide.The Field Security Manager is crucial in our domestic security operations function. · This position supports the development of customized security plans ...

  • Senior Manager, Security

    3 weeks ago

    Only for registered members San Francisco Full time $157,000 - $196,000 (USD)

    Yelp is seeking a strategic and experienced Senior Manager to lead our Physical Security function. · ...

  • Network Security Manager

    1 month ago

    Only for registered members San Francisco

    We are seeking a Network Security Manager with advance hands-on experience in Palo Alto firewall, F5 LTM, GTM and WAF. · ...

  • Field Security Manager

    1 week ago

    Only for registered members San Francisco, CA

    The Field Security Manager is crucial in our domestic security operations function. This position supports the development of customized security plans for each client based on their unique intake needs. · Review all administrative documentation for the field security contracts, ...

Jobs
>
Information security manager
>
Jobs for Information security manager in San Francisco