Global Payments Inc.

Senior Director, Cyber Security Enablement – Secure DevOps

Global Payments Inc.

full-time

Posted on:

Location Type: Hybrid

Location: Columbus • 🇺🇸 United States

Visit company website
AI Apply
Apply

Job Level

Senior

Tech Stack

AWSAzureCloudGoogle Cloud PlatformKubernetesSDLC

About the role

  • Leads the implementation of security within the software development and IT build lifecycle, focusing on integrating security into CI/CD pipelines.
  • Collaborates with development and operations teams to foster a culture of security and enhance security posture.
  • Oversees the deployment and execution of enterprise security controls.
  • Determines risk and exposure of security gaps and provides guidance to key stakeholders.
  • Builds, oversees, and maintains an enterprise Secure DevOps program.
  • Designs and implements processes to embed security into every stage of the software development lifecycle (SDLC) and CI/CD pipelines.
  • Drives and leads the automation of security processes and controls, testing (SAST, DAST, etc.), and compliance checks.
  • Identifies, evaluates, and mitigates security risks and vulnerabilities in applications and infrastructure.
  • Supports security incident response activities from detection to resolution, including post-incident analysis and lessons learned.
  • Develops and maintains metrics to monitor and report on the effectiveness of security controls and processes.

Requirements

  • Bachelor's degree in Computer Science, Information Systems, or a related field; or over 15+ years industry experience in related roles.
  • 10+ years of progressive experience in enterprise information security, with a focus on financial organizations and global operations.
  • Proven experience in leadership roles.
  • Deep understanding of the software development lifecycle and CI/CD practices.
  • Expertise in security tools for static analysis (SAST), dynamic analysis (DAST), software composition analysis (SCA), and more.
  • Strong knowledge of cloud security (AWS, Azure, GCP) and infrastructure as code (IaC).
  • Experience with container security technologies like Kubernetes.
  • Strong understanding of security frameworks and standards (e.g., PCI DSS, NIST, ISO 27001, SOC).
  • Demonstrated experience in leading security controls risk assessments and remediation efforts, application security, and vulnerability management.
  • Excellent leadership and people management skills, with the ability to build and motivate high-performing teams.
  • Strong analytical and problem-solving skills, with the ability to make sound decisions in complex and fast-paced environments.
  • Excellent communication and interpersonal skills to promote security across diverse teams.
  • Exceptional communication and stakeholder management skills, with the ability to effectively interact with executives and technical teams.
Benefits
  • Equal employment opportunities
  • Reasonable accommodations for employment applications and feedback about accessibility

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
security integrationCI/CD pipelinesenterprise security controlsrisk assessmentSecure DevOpsSASTDASTcloud securityinfrastructure as codecontainer security
Soft skills
leadershippeople managementanalytical skillsproblem-solvingcommunicationinterpersonal skillsstakeholder managementteam motivationdecision-makingcollaboration