Manager, Security Engineering

About the opportunity

Contentful strives to build a secure and safe service and commits considerable effort and resources to security. Our Security team supports organization-wide information security management programs and collaborates closely with internal teams. We believe that Security must be anchored by DevOps principles with strong repeatable processes.

We are looking for a committed and driven manager who is passionate about solving complex security problems in innovative and scalable ways. As a Manager of Security Engineering you will own security engineering across Contentfuls corporate systems including the tooling and platforms that support the internal security team. While this role does not own security for the customer facing product you will partner closely with product security teams within the security organization on shared responsibilities.

You will balance people leadership with hands-on technical execution including designing building and operating security controls and tooling at scale with a particular focus on areas such as identity and access management data security and SaaS platforms. You will provide strategic guidance and lead initiatives while remaining directly involved in implementation. You may work independently at times but will more often collaborate closely with security IT and cross-functional partners to align strategies execute shared initiatives and ensure comprehensive risk mitigation while minimizing impact on end users across the organization.

What to expect

• Develop a team providing coaching mentorship goal setting and performance feedback.
• Define roles and make hiring decisions to grow the team in line with department needs.
• Remain hands on balancing technical leadership with direct implementation work.
• Own execution and prioritization across projects and operations using agile delivery practices.
• Scale and mature effectiveness and efficiency by improving processes and tooling.
• Champion continuous improvement across all aspects of the security program.
• Continuously improve effectiveness and efficiency by evolving processes and tooling.
• Communicate risks and technical concepts with clarity to leadership and stakeholders.
• Collaborate with security leadership to execute business aligned risk reduction roadmaps.
• Shape work scope sequencing and success criteria inline with department and company needs.
• Drive security processes standards and best practices across information technology assets.
• Partner with stakeholders to evolve security awareness and specialized training across all functions.
• Mature capabilities across endpoint SaaS and cloud configuration.
• Own strategy evolution of corporate capabilities including configuration IAM and data security.
• Enhance tooling automation and integrations to improve visibility and reduce manual effort.
• Support and guide security incident response efforts as a technical leader.
• Support cross functional vulnerability management while advancing the program capabilities.
• Define and maintain metrics to measure impact optimize execution and guide investment.
• Partner with cross-functional teams for security enhancement and drive risk reduction.
• Accelerate adoption of AI balancing practicality enablement and risk management.
• Stay current on threats vulnerabilities and tactics translating insights into actionable strategies.

What you need to be successful

• 8 years of progressive engineering and security experience.
• 3 years managing people and security engineering teams.
• Comfort operating in ambiguity balancing strategic thinking security and practicality.
• Expertise with AWS GCP and Azure.
• Strong hands-on experience designing implementing and operating security controls at scale.
• Demonstrated experience securing endpoint SaaS and cloud environments.
• Experience working within identity and access management and data security programs.
• Software development experience in modern programming language (Python Go etc)
• Hands-on experience using Terraform and infrastructure-as-code.
• Experience applying modern practices to improve efficiency and scalability or security programs.
• Passion for solving complex security problems in innovative and scalable ways.
• Experience using metrics to measure impact optimize execution and guide investment decisions.
• Strong communication skills with the ability to explain technical topics to non technical audiences.
• Ability to support occasional off-hours incident response efforts.
• Familiarity with attacker techniques in cloud-native and traditional environments.
• Hands-on experience owning security technologies (e.g. EDR AntiVirus etc.)
• Proven ability to lead cross-functional initiatives and influence outcomes without direct authority.
• Experience owning end to end security programs proactively driving incremental improvement.
• Strong systems thinking with the ability to design security solutions that scale through efficiency.

Whats in it for you

• Join an ambitious tech company reshaping the way people build digital experiences
• Full-time employees receive Stock Options for the opportunity to share in the success of our company
• Comprehensive healthcare package covering 100% of monthly health premiums for employees and 85% of costs for your dependents.
• Fertility and family building benefits including a lifetime reimbursable wallet to support your growing family.
• We value Work-Life balance and You Time! A generous amount of paid time off including vacation days sick days compassion days for loss education days and volunteer days
• Company paid parental leave to care for and focus on your growing family
• Use your personal annual education budget to improve your skills and grow in your career
• Enjoy a full range of virtual and in-person events including workshops guest speakers and fun team activities supporting learning and networking exchange beyond the usual work duties
• An annual wellbeing stipend to care for your physical financial or emotional health
• A monthly communication stipend and phone hardware upgrade reimbursement.
• New hire office equipment stipend for hybrid or distributed employees. Get the gear you need to work at your best.

This role will need to be conducted in a state in which we are currently registered to do business.

New York Salary Statement: The salary range displayed is specifically for those potential hires who will work or reside in the state of New York if selected for the role. Any offered salary is determined based on internal equity internal salary ranges market data/ranges applicants skills and prior relevant experience certain degrees and certifications (e.g. JD/technology) for example.

New York Salary Range: $187000 - $253000
This position is eligible for equity awards in accordance with the terms of Contentfuls equity plans.

#LI-hybrid

Who are we

Contentful is a leading digital experience platform that helps modern businesses meet the growing demand for engaging personalized content at scale. By blending composability with native AI capabilities Contentful enables dynamic personalization automated content delivery and real-time experimentation powering next-generation digital experiences across brands regions and channels for more than 4200 organizations worldwide. More than 700 people from more than 70 nations contribute their energy and creativity to Contentful working from hubs in Berlin Denver San Francisco London New York and distributed worldwide.

Everyone is welcome here!

Everyone is welcome here is a celebrated component of our culture. At Contentful we strive to create an inclusive environment that empowers our employees. We believe that our products and services benefit from our diverse backgrounds and experiences and we are proud to be an equal opportunity employer. All qualified applications will receive consideration for employment without regard to race color national origin religion sexual orientation gender gender identity age physical disability or length of time spent unemployed. We invite you to apply and join us!

If you need reasonable accommodations at any point during the application or interview process please let your recruiting coordinator know.

Please be aware of scammers who may fraudulently allege to be from Contentful. These types of fraud can be carried out through copycat websites fake email addresses claiming to be from our company or social media. We do not ask for your personal information such as bank account numbers identification numbers etc through social media or chat-based apps nor do we request or send money for the purchase of business equipment. If you suspect fraud please report it to your local authorities as well as reach out to us at with any information you may have.

By clicking Apply for this job I acknowledge that I have read the Contentfuls Candidate Privacy Notice and hereby consent to the collection processing use and storage of my personal information as described therein.