Assistant Vice President, Cyber Security
Continental Finance Company · Wilmington, DE · 2 wk ago
HybridManagementFull-time
About the role
The AVP, Cyber Security at Continental Finance Company supports the Technology team in designing, implementing, and operating the cybersecurity program. This role involves hands-on technical leadership and responsibility for embedding security into AWS infrastructure, applications, and engineering workflows.
Responsibilities
- Own the technical execution of the cybersecurity program.
- Provide leadership to a team of cybersecurity engineers, including performance coaching, workload prioritization, and professional development.
- Design and operate security controls across AWS environments.
- Implement and maintain IAM, encryption, secrets management, and network security.
- Define and enforce secure API and application security standards.
- Integrate security tooling into CI/CD pipelines (SAST, DAST, dependency scanning).
- Perform threat modeling, vulnerability assessments, and remediation.
- Maintain monitoring of security events and lead technical incident response.
- Support SOC 2, PCI DSS, and related audit and compliance activities.
- Conduct security reviews of vendors, partners, and third-party integrations.
- Act as a security subject-matter expert and advisor to engineering teams.
Requirements
- BA or BS Degree in Computer Science or related degree is preferred.
- Minimum of 6–10 years of experience in cybersecurity, cloud infrastructure, or software engineering is required.
- Minimum of 2–4 years in a senior or lead security engineering role.
- Hands-on experience securing cloud-native, SaaS or FinTech platforms.
- Direct experience with AWS-based, API-heavy architectures.
- Strong hands-on experience with: AWS IAM, VPC, KMS, Security Hub, GuardDuty, CloudTrail, Secure API design (OAuth2, JWTs, mTLS), Infrastructure-as-Code (Terraform or CloudFormation), CI/CD security and DevSecOps practices.
- Solid understanding of OWASP Top 10 and API Security Top 10.
- Strong technical judgment and ownership mindset.
- Ability to communicate security risks clearly to engineers and leadership.
- Pragmatic, risk-based approach to security.
- Comfortably operating independently and remaining deeply hands-on.
- AWS Certified Security – Specialty certification is a plus.
- CISSP, CCSP, CISM, or GIAC certifications are preferred.
- Experience in regulated FinTech or financial services environments preferred.
Qualifications
- High School Diploma or GED required.
- Competitive compensation and benefits offered.
- Hybrid work schedule with three core days in the office (Tuesday, Wednesday, and Thursday) and two remote workdays (Monday and Friday).
Skills
- Technical skills as outlined in the requirements section.
Benefits
- Competitive compensation and benefits.
- Hybrid work schedule with three core days in the office (Tuesday, Wednesday, and Thursday) and two remote workdays (Monday and Friday).
Pay
Compensation details are confidential and not specified in the job posting.
Schedule
Hybrid work schedule with three core days in the office (Tuesday, Wednesday, and Thursday) and two remote workdays (Monday and Friday).
Benefits
- Competitive compensation and benefits.
- Hybrid work schedule with three core days in the office (Tuesday, Wednesday, and Thursday) and two remote workdays (Monday and Friday).