Information Security ManagerKikoff • San Francisco, CA, United States
Information Security Manager
Kikoff • San Francisco, CA, United States
7 days ago
Job type
- Full-time
Job descriptionEstablish vulnerability management program with defined SLAs and remediation workflows Own end‑to‑end vulnerability management : identify, assess, prioritize, and drive remediation to completion across infrastructure and applications Manage external penetration testing program with third‑party vendors, including scoping, assessment review, and remediation tracking Perform internal penetration testing and security assessments of applications, APIs, and infrastructure Build SIEM detection rules, security dashboards, and alert triage processes Develop and test incident response runbooks Conduct threat modeling for critical systems and architectural changes Lead security assessments of new technologies and third‑party integrations Partner with platform engineering to implement security roadmap : AWS landing zone design, PAM / JIT workflows, account segmentation, disaster recovery testing Enforce enterprise security controls (SSO, secrets management, RBAC) Build and deliver security awareness training program for all employees Develop and maintain security policies, standards, and procedures Translate compliance requirements into actionable engineering tasks and drive completion 5+ years in information security, with 2+ years in fintech or a highly regulated industry CISSP certification (or actively pursuing – must obtain within 12 months of hire) Hands‑on experience leading SOC 2 and PCI DSS audits from start to finish Strong incident response background – you've led real security incidents Experience with vulnerability management platforms (Wiz, Snyk, Tenable) Solid understanding of AWS security : IAM, Security Hub, GuardDuty, CloudTrail, KMS Experience with SIEM platforms (Splunk, Datadog, Elastic) – you can write detection rules and build dashboards Hands‑on experience with vulnerability assessment and penetration testing tools (Burp Suite, Nessus, Qualys, or similar) Ability to read code (Ruby, JavaScript, Python) and assess security implications Knowledge of web application security, API security, and OWASP Top 10 Understanding of access control patterns (PAM, SSO, RBAC, least privilege) Strong communication – you can explain risks to engineers and executives alike Pragmatic risk management in fast‑paced environments Self‑starter who builds programs from scratch Collaborative mindset – security as enabler, not blocker Ability to drive remediation to completion across teams Additional certifications (CISM, CISA, CCSP, CEH, OSCP, CRISC) Experience managing WAF deployments (Palo Alto, Cloudflare, AWS WAF) Infrastructure‑as‑code experience (Pulumi, Terraform) Kubernetes security knowledge SOAR platform experience DevSecOps or security automation background Scripting skills (Python, Bash) for security tooling and automation Medical, dental, and vision coverage – Kikoff covers the full cost of health insurance for the employee Meaningful equity in the form of RSUs Flexible vacation policy Competitive pay based on experience (base + equity + benefits) Hybrid location – 3 days onsite in San Francisco, CA Visa sponsorship available for H1‑B visas and U.S. green cards for exceptional talent
About The Role
You'll be our first dedicated security leader, owning the technical execution of our security and compliance program.
You’ll drive SOC 2 and PCI DSS compliance, manage our vulnerability program, and build security capabilities that enable our engineering teams to move fast while staying secure. This is a hands‑on role—you’ll design controls, write policies, respond to incidents, and work directly with auditors.
This is initially an individual contributor role with high impact and visibility. As our security program matures, you’ll have the opportunity to build and lead a security team.
Own Compliance
- Lead SOC 2 Type II and PCI DSS programs through successful audit
- Design and implement security controls without blocking velocity
- Serve as primary technical contact for external auditors and assessors
- Manage third‑party vendor security assessments and ongoing monitoring
- Build automated evidence collection and continuous compliance monitoring
- Report security metrics and program status to executive leadership
Manage Security Operations
Enable & Collaborate
You Have
Security & Compliance
Technical Skills
Core Competencies
Nice to Have
Kikoff
Kikoff is a FinTech unicorn powering financial progress with AI. Our mission is to provide radically affordable financial tools to help consumers achieve financial security. Founded in 2019, we serve millions of people, many building credit or navigating life paycheck to paycheck. We simplify credit building, reduce debt, and expand access to financial opportunities.
Why Kikoff
This is a consumer fintech startup where you will work with serial entrepreneurs who have built strong consumer brands and innovative products. We value extreme ownership, clear communication, a strong sense of craftsmanship, and the desire to create lasting work and relationships.
Benefits
Equal Employment Opportunity Statement
kikoff Inc. is an equal opportunity employer. We are committed to complying with all federal, state, and local laws providing equal employment opportunities and consider qualified applicants without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, marital status, pregnancy, sex, gender expression or identity, sexual orientation, citizenship, or any other legally protected class.
If you need reasonable accommodation for a job opening, please connect with us at talent@kikoff.com and describe the specific accommodation requested for a disability-related limitation.
San Francisco Fair Chance Ordinance : Pursuant to the San Francisco Fair Chance Ordinance, Kikoff will consider for employment qualified applicants with arrest and conviction records.
#J-18808-Ljbffr
Create a job alert for this search
Information Security Manager • San Francisco, CA, United States
Related jobs
You'll be our first dedicated security leader, owning the technical execution of our security and compliance program.You'll drive SOC 2 and PCI DSS compliance, manage our vulnerability program, and...Show more
Join a top-tier telecommunications company that is committed to innovation and customer satisfaction.We are seeking a strategic and seasoned Head of Information Security to lead our cybersecurity i...Show more
Information Security Architect : 25-06822.AWS (Expert), Threat Modeling (Advanced), Security Vulnerabilities (Advanced), Cloud Architecture Design (Expert), Communication (Proficient).San Francisco,...Show more
A public service organization in San Francisco seeks an Information Systems Manager to oversee the PeopleSoft HCM system, ensuring compliance and managing IT infrastructure.The ideal candidate will...Show more
Staff Program Manager, Information Security.Redwood Materials was founded in 2017 to create a circular supply chain for electric vehicles and clean energy products, making them more sustainable and...Show more
Primary Skills : CDP (Expert), Data Architecture(Advanced), Security Vulnerabilities (Advanced), Cloud Architecture Design (Expert), Cloud Security (Proficient).
Contract Type : W2 Location : #LI-Onsit...Show more
Lead Information Security Architect.Stefanini is looking for a Lead Information Security Architect for various locations across the USA (Hybrid Role).
For quick Apply, please reach out to Akash Gupt...Show more
This range is provided by Enterprise Solutions Inc.Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.
Lead and produce system threat models for int...Show more
A city's health service organization in San Francisco is seeking a qualified Information Systems Manager to oversee the PeopleSoft HCM system and manage the department’s IT infrastructure.The ideal...Show more
Innovation starts from the heart.At Edwards Lifesciences, we’re dedicated to developing ground-breaking technologies with a genuine impact on patients’ lives.
At the core of this commitment is our i...Show more
Stone Recruiting is a national search firm with a focus on placing top Cyber Security talent from the Analyst level to CISO with prestigious organizations nationwide.
Reports to CISO and works with ...Show more
Software Guidance & Assistance, Inc.Lead Information Security Architect.San Francisco, CA, Los Angeles, CA or Salt Lake City, UT.
Lead and produce system threat models for integration of commercial ...Show more
We are seeking a Senior / Lead Information Security Architect to design secure cloud architectures, perform system threat modeling, and propose effective security controls for critical workloads.The ...Show more
A leading AI cloud service provider located in Seattle is seeking a Manager of the Security Architecture team.This role focuses on building a high-performing team of security engineers, establishin...Show more
Touching lives by being the first choice for bargain-minded consumers in the U.Achievement, Diversity, Entrepreneurship, Family, Fun, Integrity & Service.
Our IT team's mission is to push the bounda...Show more
Sr / Lead Information Security Architect.Lead and produce system threat models for integration of commercial components into a data lake platform.
Help design secure cloud architectures.Propose effect...Show more
At Gilead, we're creating a healthier world for all people.For more than 35 years, we've tackled diseases such as HIV, viral hepatitis, COVID-19 and cancer - working relentlessly to develop therapi...Show more
You'll be our first dedicated security leader, owning the technical execution of our security and compliance program.You'll drive SOC 2 and PCI DSS compliance, manage our vulnerability program, and...Show more
Information Security Manager
Kikoff • San Francisco, CA, United States
Full-time
Last updated: 7 days ago • Promoted
Head of Information Security
Confidential • San Francisco, CA, United States
Full-time
Last updated: 14 days ago • Promoted
Information Security Architect : 25-06822
Akraya, Inc. • San Francisco, CA, United States
Full-time +1
Last updated: 10 days ago • Promoted
Senior Information Systems Manager - HCM & Security
Enterprise for Youth • San Francisco, CA, United States
Full-time
Last updated: 5 days ago • Promoted
Staff Program Manager, Information Security
Redwood Materials • San Francisco, CA, United States
Full-time
Last updated: 30+ days ago • Promoted
Information Security Architect :
Akraya • San Francisco, CA, United States
Full-time +1
Last updated: 16 days ago • Promoted
Lead Information Security Architect
Stefanini Group • San Francisco, CA, United States
Full-time
Last updated: 10 days ago • Promoted
Information Security Architect
Enterprise Solutions Inc. • San Francisco, CA, United States
Full-time
Last updated: 10 days ago • Promoted
Information Systems Manager : HCM & Security Lead
San Francisco • San Francisco, CA, United States
Full-time
Last updated: 3 days ago • Promoted
Architect, Information Security, IAM
Edwards Lifesciences • San Francisco, CA, United States
Full-time
Last updated: 10 days ago • Promoted
Cyber Security Manager
blueStone • San Francisco, CA, United States
Full-time
Last updated: 10 days ago • Promoted
Lead Information Security Architect
Software Guidance and Assistance, Inc. • San Francisco, CA, United States
Full-time
Last updated: 16 days ago • Promoted
Information Security Architect
Compunnel, Inc. • San Francisco, CA, United States
Full-time
Last updated: 10 days ago • Promoted
AI Cloud Security Architecture Manager
Lambda • San Francisco, CA, United States
Full-time
Last updated: 6 days ago • Promoted
Information Security Engineering Manager
Grocery Outlet • Emeryville, CA, United States
Full-time
Last updated: 10 days ago • Promoted
Information Security Architect
Varite • San Francisco, CA, United States
Full-time
Last updated: 16 days ago • Promoted
Manager, IT Security Engineering
Gilead Sciences • Foster City, CA, United States
Full-time
Last updated: 3 days ago • Promoted
Information Security Manager
Kikoff Inc • San Francisco, CA, United States
Full-time
Last updated: 8 days ago • Promoted