Security Manager Position
Pointsville, a global leader in alternative asset digitalization and loyalty innovation, seeks a hands-on Cyber Security Manager to build, manage, and scale its security and compliance programs. This role is ideal for someone capable of designing enterprise-grade security programs, engineering security tools, and embedding best practices into fast-moving development environments.
Key Responsibilities:
* Develop and implement the company-wide security strategy, policies, and frameworks aligned with business goals and regulatory requirements.
* Conduct organization-wide risk assessments, vulnerability scans, and incident response exercises.
* Drive security awareness and training programs to strengthen company-wide accountability.
* Collaborate with executive leadership to ensure security goals align with organizational priorities.
Requirements:
* 7+ years of hands-on experience in security engineering, product security, or infrastructure security roles.
* Proven track record designing and deploying security tools and frameworks at scale.
* Deep understanding of cryptography, secure protocols, and key management systems.
* Expertise in cloud services (AWS), containerization (Docker/Kubernetes), and large-scale distributed systems.
* Strong knowledge of application security (OWASP, STRIDE, TARA) and vulnerability mitigation.
* Proficiency in one or more system languages (Java, C, C++, Rust, Go) and one scripting language (Python, Shell).
Pointsville is an equal opportunity employer committed to providing a work environment free from discrimination and harassment based on race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
Job Expectations:
1. Build and lead Pointsville's global security and compliance function from the ground up.
2. Lead the design and development of advanced security testing and monitoring platforms, including distributed fuzzing systems and validation frameworks.
3. Conduct secure architecture reviews and threat modeling for infrastructure, APIs, smart contracts, and cloud-native services.