Upstart
financial technology
SeniorSecurityEngineeringManager,EnterpriseSecurity
Neural analysis suggests this role is
optimal for Senior candidates.
“Senior Security Engineering Manager, Enterprise Security at Upstart. Skills: Security Engineering Management, Enterprise Security Program Development, Security Operations Leadership, Detection Engineering Strategy, Cloud Security, Identity and Access Management, Incident Response Leadership, Cross-functional Security Initiatives. Lead the strategy, roadmap, and execution for security engineering programs across enterprise security, security operations, and detection security engineering. Manage,”
What You'll Achieve.
Reduce risk across the company; Strengthen Upstart’s security posture through scalable controls, effective monitoring and response, secure tooling, automation, and cross-functional security programs; Reduce costly incidents; Minimize operational disruption; Focus time on the highest-impact security risks; Ensure security priorities are aligned with company goals; Deliver measurable security outcomes; Reduce systemic risk; Increase operational efficiency; Ensure the team is focused on the highest-value security work
Industry & Context.
Identifying recurring issues; Addressing root causes; Developing solutions
Time zone requirements: The team operates on the East/West coast time zones., Travel requirements: Regular onsites for in-person collaboration (frequency varies by team, typically once or twice per quarter for 2-4 consecutive days).
What They're Looking For.
Must Have
8+ years of experience in information security, security engineering, enterprise security, security operations, detection and response, incident response, vulnerability management, cloud security, or related security domains, 3+ years of experience managing security professionals or leading security engineering programs across multiple teams or stakeholder groups, Experience owning roadmaps, priorities, metrics, and execution for security programs with cross-functional dependencies, Experience building or operating security capabilities in cloud-based and enterprise environments, including working knowledge of common security tooling, logging, monitoring, detection, identity, endpoint, and response practices, Experience leading security incidents or operational security programs, including investigation coordination, stakeholder communications, remediation tracking, and post-incident improvement, Experience partnering with Engineering, IT, Compliance, Legal, Risk, or business teams to deliver measurable security outcomes
Nice to Have
Experience leading security programs across multiple domains such as enterprise security, security operations, detection engineering, cloud security, identity and access management, endpoint security, vulnerability management, or incident response, Demonstrated experience building or improving security programs that emphasize proactive and preventative controls, automation, and early risk reduction over reactive incident response, Knowledge of AWS, Kubernetes, CI/CD security, endpoint security, identity and access management, vulnerability management, SIEM/SOAR, logging pipelines, and modern detection engineering practices, Ability to communicate security risk, tradeoffs, and recommendations clearly to technical, non-technical, and senior leadership audiences, Experience improving detection and response maturity through logging strategy, detection coverage, alert tuning, automation, playbooks, tabletop exercises, postmortems, and measurable process improvements, Experience improving enterprise security programs across SaaS applications, identity providers, endpoint controls, corporate infrastructure, and employee security workflows, Experience operating in a regulated environment, financial technology company, or organization with high security, privacy, or compliance requirements, Security certifications such as CISSP, CISM, GIAC, AWS Security Specialty, or similar credentials
What You'll Do.
and execution for security engineering programs across enterprise security
and detection security engineering
and develop a team of security professionals
Build and mature proactive and preventative security controls across corporate systems
and security operations workflows
Improve Upstart’s ability to detect
and respond to threats
Drive cross-functional security initiatives
Establish and report on meaningful security engineering and operations metrics
Evaluate and improve security tooling
Raise the maturity of Upstart’s security programs by identifying recurring issues
addressing root causes
and developing solutions
How You'll Work.
Team & Collaboration
Partner closely with Engineering, IT, Legal, Compliance, Risk, and business leaders to mature Upstart’s security capabilities; Align security priorities with company goals, risk tolerance, and operational needs; Drive cross-functional security initiatives across Engineering, IT, Compliance, Legal, Risk, and business teams
Communication Scope
Ability to communicate security risk, tradeoffs, and recommendations clearly to technical, non-technical, and senior leadership audiences
Process & Methodology
Owning roadmaps, priorities, metrics, and execution for security programs with cross-functional dependencies
Full Job Description
About Upstart At Upstart, we’re united by a mission that matters: to radically reduce the cost and complexity of borrowing for all Americans. Every day, we bring creativity, experimentation, and advanced AI to reshape access to credit, helping millions move forward financially with clarity and confidence. As the leading AI lending marketplace, we partner with banks and credit unions to expand access to affordable credit through technology that’s both radically intelligent and deeply human. Our platform runs over one million predictions per borrower using more than 1,800 signals, powering smarter, fairer decisions for millions of customers. But the numbers only hint at the impact. Every idea, every voice, and every contribution moves us closer to a world where credit never stands between people and their financial progress. We’re proudly digital-first, giving most Upstarters the flexibility to do their best work from wherever they thrive, alongside teammates across 80+ cities in the US and Canada. Digital-first doesn’t mean distant. We’re intentional about in-person connection through team onsites, planning sessions, and moments that spark creativity and trust. And whether you choose to work primarily from home or collaborate in-person from one of our offices in Columbus, Austin, the Bay Area, or New York City (opening Summer 2026), you’ll have the support to work in the way that works best for you. If you’re energized by tackling meaningful problems, excited to innovate with purpose, and motivated by work that truly matters, we’d love to hear from you. The Team Upstart’s Security Engineering team protects Upstart’s people, systems, products, and data by building and operating security capabilities that reduce risk across the company. The team works across enterprise security, security operations, and detection security engineering to strengthen Upstart’s security posture through scalable controls, effective monitoring and response, secure tooling, automation, and cr
Applying for this Senior Security Engineering Manager, Enterprise Security role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
ANONYMOUS · UNFILTERED
What do employees actually say about Upstart?
Real rants from real employees. Read before you apply.