Dinasour Header Image
Two Barrels LLC Logo

Two Barrels LLC

Application Security Director

Job Posted 7 Days Ago Posted 7 Days Ago
Remote
Hybrid
4 Locations
Senior level
Remote
Hybrid
4 Locations
Senior level
The Application Security Director leads the security team, implements security strategies, ensures compliance, and oversees hands-on technical work and team development.
The summary above was generated by AI

Overview:
Two Barrels is hiring an Application Security Director to build, lead and develop our Security team. You will be a traditional company employee. This is a full-time 40 hours/week position with company benefits.
As a "Director," you will be responsible for overseeing security as well as actually doing the work of a security engineer as we grow this team. Ultimately, if you are solely looking for the prestige of being a "Director," this probably isn't the right place for you. We are not looking for a figurehead to fill this seat; we want someone who is going to get their hands dirty and do the work. But because your title will be "Application Security Director," you will need to be able to push and grow the team. You have been there and done that in the security world, help some people out!
You like being hands-on and doing the actual work, but you also like the tactical part of this and looking at things from a higher level. You are a professional and don't laugh at job titles like "Penetration Tester" even though it's funny. More importantly, you know what someone in that role is doing, and you can do some of it yourself if not all of it. Your role is technical, but you're also a leader, so you're a technical leader. We have Operations Managers who aren't technical, so we need you to be technical... so you're a technical leader of technical people who do technical things.
This is a remote or work-wherever-you-want position. Of course, we'd prefer you be around Spokane, Salt Lake, or Austin to have a hub based out of one of our three main offices, but we're open to good talent anywhere in the US.
Location:
Remote | Spokane - Austin - SLC |
Duration:
Full Time
Wage:
Up to $200,000/year
Responsibilities:

  • Solve problems, don't just bring them to our attention
  • Find open source solutions, we like to build things, not buy things
  • Create cutting-edge processes that will leverage automation to improve our resiliency and position ourselves better to respond to security events
  • Develop and implement a comprehensive security strategy that aligns with our business objectives and priorities
  • Drive education initiatives company-wide to create security-minded employees
  • Lead security initiatives and ensure compliance with applicable regulatory requirements, such as HIPAA, PCI, and GDPR
  • Stay up to date on the newest security technologies and methodologies
  • Provide development and feedback to team members
  • Responsible for team growth


Minimum Qualifications:

  • Be a good human
  • Ability to code and work with Software Engineers (Ruby is ideal, but general software coding is required)
  • Have a build versus buy mentality
  • 5+ years of experience in Computer Science or a related field required with at least 2 of those years in Security
  • 2+ years in a technical leadership role
  • Experience with building, managing and developing a team
  • Experience with Linux and the ability to secure Linux-based systems
  • Working knowledge of the Ruby on Rails framework, including its security features and vulnerabilities
  • Able to identify the problem, not just the symptoms
  • Ability to take a holistic approach to security, identifying vulnerabilities and risks across the entire system, including areas that individual teams or departments may overlook or not be aware of
  • Comfortable working in an ambiguous environment
  • Solid understanding of AWS infrastructure, including security features, compliance requirements, and best practices for securing cloud environments
  • Basic understanding of Kubernetes architecture, its security features, and how to secure Kubernetes clusters
  • Open source solutions are your go to


Preferred Qualifications:

  • Experience in leading security incident response efforts
  • You have grown a security group from the ground up
  • You're a nice person
  • You thrive on the chaos of a place that is always coming out with great ideas


Why you might like this job:
You think like a hacker and know what they're going to do, but you are one of the good guys and want to use your security powers for good, not evil. You recognize real security risks and pride yourself on identifying the problem and not just the symptoms of the problem. You want to educate people, including developers and customer service reps, about how to avoid security problems.
We're family owned and provide a secure platform for our clients to do good work, and we want to keep it that way. Privacy, security, and ease of mind for our people; let's keep that going. We have a lot of good people here who want to see that continue, and you want to push it farther down that road.
#BI-Remote
Benefits:

  • Great Wage & Success Meetings with your manager
  • Work From Home comfort package & company provided equipment
  • 22 days paid time off annually, PLUS 4 paid holidays
  • Up to 5% 401k employer matching through Fidelity
  • 100% employer-paid medical, dental and vision for employees
  • Maternity and Paternity Leave
  • Flexible hours
  • Coffee shop next door
  • Crappy parking? Oh, I mean a cool downtown location for easy public transportation options...

Top Skills

AWS
Kubernetes
Linux
Ruby
Ruby On Rails

Similar Jobs at Two Barrels LLC

Two Barrels LLC Logo
Two Barrels LLC

Application Security Engineer

3 Days Ago
Remote
Hybrid
4 Locations
Mid level
Mid level
eCommerce • Legal Tech • Professional Services • Software • Data Privacy
Responsible for identifying vulnerabilities, creating security reports, communicating with stakeholders, and assisting in security practices and processes.
Top Skills: Cloud ServicesLinuxPenetration Testing ToolsRuby On RailsVue
Two Barrels LLC Logo
Two Barrels LLC

Cyber Security Analyst - Information Systems and Networking

7 Days Ago
Remote
Hybrid
4 Locations
Mid level
Mid level
eCommerce • Legal Tech • Professional Services • Software • Data Privacy
The Cyber Security Analyst is responsible for protecting networks, analyzing vulnerabilities, managing risk, implementing security strategies, and documenting breaches.
Top Skills: AntivirusFirewallsIdpsProxiesPythonRubySIEM
Two Barrels LLC Logo
Two Barrels LLC

Social Media Specialist

Yesterday
Remote
Hybrid
3 Locations
Mid level
Mid level
eCommerce • Legal Tech • Professional Services • Software • Data Privacy
The Social Media Specialist will enhance brand presence, develop strategies for engagement, and analyze social media effectiveness. Responsibilities include content creation, collaboration with marketing teams, and using analytics for strategy development.
Top Skills: Analytics ToolsDigital MarketingSocial Media

What you need to know about the Calgary Tech Scene

Employees can spend up to one-third of their life at work, so choosing the right company is crucial, not just for the job itself but for the company culture as well. While startups often offer dynamic culture and growth opportunities, large corporations provide benefits like career development and networking, especially appealing to recent graduates. Fortunately, Calgary stands out as a hub for both, recognized as one of Startup Genome's Top 100 Emerging Ecosystems, while also playing host to a number of multinational enterprises. In Calgary, job seekers can find a wide range of opportunities.
Apply Save
By clicking Apply you agree to share your profile information with the hiring company.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account