• Locations
    • United States
    • Remote
  • Date Posted
  • Aug. 18, 2021
  • Function
  • IT
  • Sector
  • Data

Are you ready to power the World’s connections?

If you don’t think you meet all of the criteria below but are still interested in the job, please apply.  Nobody checks every box - we’re looking for candidates that are particularly strong in a few areas, and have some interest and capabilities in others.

About the role:

As information security manager, you lead the engineering team responsible for Kong’s systems and software security program. In collaboration with the security engineers, the Compliance team, and other security stakeholders, you will develop and implement a strategic security architecture roadmap to ensure the security and privacy of our customer data, detect and mitigate vulnerabilities in our products and services, and document controls for contractual and audit purposes. You’ll also design, communicate, and enforce processes to ensure that we meet our governance requirements, satisfy customer needs regarding security questions, and manage our supply chain risk effectively.

What you’ll do:

  • Recruit, onboard, and retain a world-class team of systems and software security engineers with a wide range of experience, expertise, and backgrounds.
  • Lead our security incident response efforts and design the processes to support them.
  • Collaborate with members of the Infosec and Compliance teams to design and implement a multi-year strategic roadmap for information security at Kong.
  • Drive security architecture decisions and principles within the team and across Engineering - including facilitating discussions and conflict resolution for results.
  • Help to define and implement secure product development practices across Kong’s product engineering teams.
  • Educate and mentor engineers on your team and across Engineering about good security practices.
  • Any additional tasks required by manager.

What you’ll bring:

  • 10+ years of combined engineering leadership and infosec experience.
  • Experience securing microservices architectures and distributed systems for a large scale SaaS platform.
  • Demonstrated ability to lead a security incident response organization.
  • Knowledge of at least one of the following:
  • Intrusion detection and mitigation.
  • Incident response and forensic analysis.
  • Software security controls (e.g. OWASP, NIST).
  • Applied cryptography & security protocols.
  • Authentication and Access Control.
  • Understanding of legal, information security, and privacy frameworks (e.g., ISO 27001 and GDPR).
  • Excellent verbal and written communication skills.

What is a Konger?

We are a group of makers, thinkers, and doers focused on helping today’s developers build tomorrow’s technology. Our teams work on the bleeding edge of API innovation to provide our users with a central nervous system for data and services.

We put design at the heart of everything we do, and we’re relentlessly focused on creating beautiful experiences for our customers. That’s why technology companies, major banks, e-commerce innovators, and government agencies put Kong in front of their most important web applications.

We believe in the power of Open Source and everything it stands for. That’s why developers around the world enthusiastically contribute on top of our open-source platform.

We are passionate about solving challenges that will fundamentally shape the future of technology, and we’re looking for the right people to join us on our mission. If you believe in taking ownership of your work, making an impact, and having fun along the way, we would love to talk to you.

Kong Core Values:

  • Be Inclusive.  We work together from anywhere to achieve our common goals. Our differences make us stronger.
  • Be Authentic.  We are genuine, principled and confident without arrogance. Show respect and kindness, especially in tough moments.
  • Be Relentlessly Resourceful.  We work with purpose, obsession and grit. It takes muscle to do hard things and doing hard things build muscle.
  • Be Customer Obsessed.  We care. Customers are everything, we put them at the center of everything you do. We are all empowered to make an impact.
  • Be Curious.  We value ideas over hierarchy. Never accept the status quo. We make bold bets, fail, and learn everyday. There is always a way.
  • Be an Owner.  We are drivers not passengers and own the quality and outcomes of our work.

About Kong:

Kong creates software and managed services that connect APIs and microservices natively across and within clouds, Kubernetes, data centers and more using intelligent automation. Built on an open source core, Kong’s service connectivity platform enables digital innovation by allowing organizations to reliably and securely manage the full lifecycle of APIs and services for modern architectures, including microservices, serverless and service mesh. By providing developer teams with unprecedented architectural freedom, Kong accelerates innovation cycles, increases productivity, and seamlessly bridges legacy and modern systems and applications. For more information about Kong, please visit konghq.com or follow @thekonginc on Twitter.