Summary

Join our growing security team and help build our business-enabling Security Platform program at Ramp. This role will provide direct impact by supporting security platform initiatives to empower cross-functional teams and secure Ramp.  

About the Team

Our team’s mission is to ensure customer data and Ramp systems are protected through the following pods:

1. Corporate Security - Implementing solutions to pare down risk and protect our most valuable assets
2. Detection & Response - Detecting threats in our environment to respond to potential incidents proactively 
3. Security Assurance - Providing trust to customers by assessing security risks, controls, and frameworks
4. Product Security - Building customer trust by improving Ramp’s products and systems
5. Platform Security - Empowering cross-functional partners by building and securing internal security platforms

What You’ll Do

1. Manage large-scale platform security programs and projects across Ramp
2. Support the implementation of platform infrastructure and controls (e.g, Source control, Environment separation) across both internal (Retool) and security (Cloudflare Tunnels, DLP solutions) tools
3. Own cross-functional relationships with Product, Engineering, Operations, CX, and Legal teams at Ramp to provide recommendations and solutions to achieve Security goals and initiatives
4. Build upon existing internal partnerships to define, iterate, and enable new initiatives to minimize security risk and mature Ramp’s security posture 
5. Perform assessments across internal and external tools used at Ramp to develop configuration baseline recommendations and remediation strategies
6. Respond to security platform alerts by conducting root cause analyses, identifying relevant stakeholders, and determining required solutions and mitigations 
7. Create and baseline internal metrics to provide upward reporting to management
8. Develop and iterate on reporting to drive accountability and reduce operational burden on cross-functional teams

What You Need

1. Minimum 5 years of experience building growth-aligned security programs at a fast-growing company or startup
2. Ability to lead multiple concurrent projects in an agile, fast-paced, frequently evolving environment
3. Ability to implement a broad program vision complemented by strong engineering and program management skills
4. Experience collaborating with engineers and stakeholders from outside the company on shared initiatives.
5. An understanding of what it takes to build scalable and reliable systems that balance risk, security, and user experience
6. Excellent understanding of risks and ability to prioritize potential gaps and opportunities for improvement based on our business and risk profile
7. Proficient risk management and communication skills to navigate difficult conversations with leadership while driving accountability for risk-based decisions
8. Demonstrated experience working cross-functionally across technical and non-technical teams across a large organization to drive alignment and action

Nice to Haves

1. Relevant Cybersecurity Certifications (CISSP, CISA, CCAK, CRISC, etc.)

Skills

• Communications Skills
• Team Collaboration