Senior Manager, Security Engineering

The RealReal is the world’s largest online marketplace for authenticated, resale luxury goods. Through our work, we are committed to contributing to a sustainable future, both for fashion and for our employees. Authenticity is a core component of our business; we value it in our products and we celebrate it across our teams by encouraging every TRR employee to bring their REAL authentic selves to work each day. We’re hiring, and we’d love for you to join our dynamic team!   The RealReal information security team is looking for a Senior Manager, Security Engineering to be part of a growing team and assist in the build out and maturation of key cloud security, product security, enterprise security, automation, and cyber defense capabilities. This person will play a key role in the maturing of The RealReals Global Information Security program. This is a challenging and rewarding opportunity for an individual who is looking to lead a security function in a fast paced environment and wishes to grow within the organization and the thriving retail industry. What You Get To Do Every Day Motivate, manage, and oversee the cybersecurity team, acquiring and developing talent to create an environment that fosters professional growth and engagement, embodying the values at The RealReal (TRR). Foster cross-functional collaboration with product, engineering, data, and DevOps teams to integrate cybersecurity throughout our product lifecycle. Enhance product and application security by implementing and maturing capabilities such as threat modeling, secure design review, SAST(static code scanning), DAST(dynamic code scanning), SCA(software composition analysis), and bot mitigation. Improve cybersecurity integration into systems and platforms such as JIRA, Slack, deployment and data pipelines, AWS, and GCP. Enhance TRRs cloud security program and demonstrate a strong understanding of public cloud security and risk mitigation capabilities. Mature TRRs threat detection and incident response by integrating aspects of SOAR (Security Orchestration Automation and Response), improving threat hunting, and leveraging key external partnerships where necessary. Actively contribute to the development and refinement of cybersecurity policies and drive adherence and standardization across departments. Develop KPIs, OKRs, and other relevant metrics for cybersecurity. Create comprehensive dashboards and reporting that accurately reflect the effectiveness of security metrics and alignment with organizational goals. What You Bring To The Role 7+ years of experience in cybersecurity engineering, cloud security, and product security 3+ years of cybersecurity leadership experience  Experience leading small teams with the technical ability and willingness to act as a player-coach Experience with public cloud environments such as AWS and GCP Deep understanding of modern SDLC and DevOps practices An automate-first mindset Self-motivated and able to work both independently and as part of a collaborative team Experience managing vendor partnerships and budgets Strong communication and documentation skills with experience briefing executives and senior leadership Willingness to provide support during nontraditional working hours or work in an on-call fashion Preferred Requirements: Moderate to deep understanding of a wide range of cybersecurity domains (Infrastructure Security, Application Security, Data Security, Cloud Security, Identity and Access, Vulnerability Management, Threat Detection and Response, etc.)   The expected salary range for this role is $274,206 to $294,206. To determine starting pay we carefully consider a variety of factors, including primary work location and an evaluation of a candidate’s skills, experience, market demands, and internal parity. Additionally, salary is just one component of TRR’s total rewards package. Depending on role, employees may also be eligible for a bonus program, incentive pay and benefits. GHR8764 #LI-AA10 #LI-Remote     The RealReal is the world’s largest online marketplace for authenticated, resale luxury goods, with more than 30 million members. With a rigorous authentication process overseen by experts, The RealReal provides a safe and reliable platform for consumers to buy and sell their luxury items. We have hundreds of in-house gemologists, horologists and brand authenticators who inspect thousands of items each day. As a sustainable company, we give new life to pieces by thousands of brands across numerous categories—including women's and men's fashion, fine jewelry and watches, art and home—in support of the circular economy. We make selling effortless with free virtual appointments, in-home pickup, drop-off and direct shipping. We do all of the work for consignors, including authenticating, using AI and machine learning to determine optimal pricing, photographing and listing their items, as well as handling shipping and customer service. At our 13 retail locations, including our twelve shoppable stores, customers can sell, meet with our experts and receive free valuations. The RealReal is committed to providing an equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or expression, or Veteran status. We will consider qualified applicants for a position regardless of arrest or conviction records.  At TRR, People Come First. That’s why diversity and inclusion are vital to our priorities as an equal opportunity employer. You can read about our Diversity Equity and Inclusion program here . Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. The employee is regularly required to sit; use hands to finger, handle, or feel and talk or hear. The employee is occasionally required to stand; walk; reach with hands and arms; climb or balance; stoop, kneel, crouch, or crawl; and taste or smell. The employee must occasionally lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision. The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.