Fastly helps people stay better connected with the things they love. Fastly’s edge cloud platform enables customers to create great digital experiences quickly, securely, and reliably by processing, serving, and securing our customers’ applications as close to their end-users as possible — at the edge of the Internet. The platform is designed to take advantage of the modern internet, to be programmable, and to support agile software development. Fastly’s customers include many of the world’s most prominent companies, including Vimeo, Pinterest, The New York Times, and GitHub.
We're building a more trustworthy Internet. Come join us.
As the Director, Security Risk Management at Fastly you will build an industry leading security risk management program and organization. You will define how we quantify security risks and identify changing trends in risk profile, draft policies to manage and mitigate those risks, and support the security compliance objectives of the organization. Fastly believes that security is everyone’s responsibility and you will be empowering all of Fastly to live up to that responsibility.
This is a role which has a major impact on keeping the company safe and secure. You will be supported by a friendly security team, where you can learn and lead. We check our egos at the door. You’ll make sure our customers benefit from a service built to the highest security standards in the industry. We pride ourselves in our involvement in the larger security community and encourage our team to present at network and security conferences and participate in the open source community. We are a distributed security team with the commitment and tools in place to make it work.
What You’ll Do- Design, operate, and lead Fastly’s security risk management program from definition of base principals to sponsoring of the overall program
- Forecast the projected needs of the program and participate in the planning processes to influence resourcing and budgets required to build the organization
- Direct the security architects on processes and procedures for conducting security assessments to quantitatively measure security risk
- Propose and implement tooling to help Fastly maintain an accurate risk register and track mitigation decisions and progress
- Perform analysis of risk data to identify patterns of deficiencies and collaborate with security architects to propose mitigation solutions
- Define the data and measures that should be generated for reporting on the status of company risks and the health of the program
- Lead Fastly’s security risk executive committee to ensure the appropriate individuals are making informed decisions related to risk treatment
- Own Fastly’s core security policies and standards to ensure appropriate baseline of security expectations and compliance with industry standards
- Partner with our compliance peers on current and potential future security related certifications (PCI, ISO 27001, SOC2, HITRUST, etc)
- Influence Fastly’s security strategy by bringing to bear the collective strength of the security team and articulating the capabilities needed to effectively manage the cyber-attack risk
At Fastly we value a diversity of voices. The following is not a laundry list, but to be effective in this role you should possess some of the following and an interest in learning more about the rest:
- You are a high EQ individual and have proven yourself to be an effective people leader by inspiring others, influencing high-steaks outcomes, demonstrating empathy, and focusing on delivery
- Extensive experience building security risk management programs at multiple organizations, preferably at modern technology companies and/or regulated environments
- Strong ability to communicate and influence effectively at all levels from technical staff to company vice presidents
- Hands on experience crafting security policies that take into account a company's unique operating environment while still meeting control objectives
- Comfortable engaging with auditors and customers to give the confidence in the effectiveness of the program
- Proven ability to weigh business needs with security priorities and make sound risk-based judgement calls
- Significant experience with threat modeling and security risk assessments resulting in a clear measure of security risk
- Strong team collaborator that actively seeks to build and maintain productive working relationships in order to establish trust and influence outcomes
- Working knowledge of FAIR, ISO 27001, NIST CSF, CIS Critical Controls, and other industry security and risk management frameworks
- High emotional intelligence. Fastly teams care about one another, collaborate regularly and are part of a people first organization
Why Fastly?
-
We have a huge impact. Fastly is a small company with a big reach. Not only do our customers have a tremendous user base, but we also support a growing number of open source projects and initiatives. Outside of code, employees are encouraged to share causes close to their heart with others so we can help lend a supportive hand.
-
We love distributed teams. Fastly’s home-base is in San Francisco, but we have multiple offices and employees sprinkled around the globe. In fact, 50% of our employees work outside of SF! An international remote culture is in our DNA.
-
We care about you. Fastly works hard to create a positive environment for our employees, and we think your life outside of work is important too. We support our teams with great benefits like up to 20 weeks of paid parental leave, options for free medical/dental/vision plans, and an open vacation program that enables our folks to take the time they need to recharge (some benefits may vary by location).
-
We value diversity. Growing and maintaining our inclusive and diverse team matters to us. We are committed to being a company where our employees feel comfortable bringing their authentic selves to work and have the ability to be successful -- every day.
-
We are passionate. Fastly is chock full of passionate people and we’re not ‘one size fits all’. Fastly employs authors, pilots, skiers, parents (of humans and animals), makeup geeks, coffee connoisseurs, and more. We love employees for who they are and what they are passionate about.
We’re always looking for humble, sharp, and creative folks to join the Fastly team. If you think you might be a fit, please apply!
Fastly is committed to ensuring equal employment opportunity and to providing employees with a safe and welcoming work environment free of discrimination and harassment.
Employment decisions at Fastly are based on business needs, job requirements and individual qualifications, without regard to race, color, religion, gender, gender identity, gender expression, sexual orientation, national origin, family or parental status, disability*, age, veteran status, or any other status protected by the laws or regulations in the locations where we operate. Fastly encourages applicants from all backgrounds.
*Applicants with disabilities may be entitled to reasonable accommodation under the terms of the Americans with Disabilities Act and certain state or local laws. A reasonable accommodation is a change in the way things are normally done which will ensure an equal employment opportunity without imposing undue hardship on Fastly. Please inform us if you need assistance completing any forms or to otherwise participate in the application process.
Fastly collects and processes personal data submitted by job applicants in accordance with our Privacy Policy. Please see our privacy notice for job applicants.
