Director of Security Risk Engineering
$200k - $210kFlywire
Job Description
Job Description
Company Description
Are you ready to trade your job for a journey? Become a FlyMate!
Passion, excitement & global collaboration are all core to what it means to be a FlyMate. At Flywire, we’re on a mission to deliver the world’s most important and complex payments. We use our Flywire Advantage - the combination of our next-gen payments platform, proprietary payment network and vertical specific software, to help our clients get paid, and help their customers pay with ease - no matter where they are in the world.
What more do we need to truly be unstoppable? Perhaps, that is you!
Who we are:
Flywire is a global payments enablement and software company, founded more than a decade ago to solve high-stakes, high-value payments in higher education. We’ve since scaled into new regions and industry verticals and expanded our product offerings to deliver meaningful value to our clients around the world.
Today we support more than 5,100 clients across the global education, healthcare, travel & B2B industries, with diverse payment methods across 240 countries & territories and more than 140 currencies.
With over 1,200 global FlyMates, representing more than 40 nationalities, and in 12 offices world-wide, we’re looking for FlyMates to join the next stage of our journey as we continue to grow.
The Opportunity:
As the Director of Security Risk Engineering, you will serve as a key senior leader working in direct partnership with the CISO to drive, shape, and mature Flywire's global enterprise security infrastructure and systems. In this role, you will bridge the gap between high-level security strategy and tactical engineering execution across six core domains: Application Security, AI Security, Cloud Security, Corporate Security, Security Operations (SecOps), and Red Teaming (Penetration Testing).
In partnership with the internal stakeholder organizations, you will lead the organizational shift from technical recovery to global enterprise operational resilience, managing a highly impactful program that safeguards our global payment rails while fostering a culture of collaboration, innovation, and continuous improvement. A solid working knowledge of all aspects of cloud-native infrastructure, software applications, AI/LLM model development, governance & validation, and automated risk mitigation is required.
Responsibilities:
- Strategic Domain Leadership: Define, implement, and monitor a comprehensive security engineering strategy across Application Security, AI Security, Cloud Security, Corporate Security, Security Operations (SecOps/Incident Detection & Response), and Red Teaming (Penetration Testing), aligning initiatives with global business objectives and emerging financial threats.
- Team Management & Mentorship: Support the CISO to lead and manage the global security engineering organization, including hiring, training, mentoring, performance management, and budget oversight.
- Secure Architecture & Governance: Oversee the design and continuous improvement of secure architecture for systems, cloud infrastructure, networks, and applications, ensuring strict alignment with security best practices.
- Global Cross-Functional Collaboration: Partner with Business, Development, DevOps, Product, Program, Risk/Compliance, and IT leaders to seamlessly integrate security controls into all phases of the engineering and CI/CD lifecycle. Engage actively with external stakeholders, auditors and global regulators on related fronts.
- Advanced Cyber Risk Efficacy: Leverage AI and automated tooling to develop proactive measures, threat intelligence capabilities, and scalable defenses against vulnerabilities across all engineering domains.
- Adversarial / Penetration Testing: Personally adopt an attacker's mindset to identify complex attack chains, logic flaws, and zero-day vulnerabilities within financial platforms and product architectures.
- Incident Response & Operational Resilience: Direct and coordinate responses to critical enterprise security incidents, managing containment, forensic investigation, and rapid remediation efforts alongside SecOps.
- Regulatory Compliance Frameworks: Maintain an information security framework that ensures continuous readiness for strict industry audits and regulatory compliance requirements globally (e.g., NIST CSF 2.0, ISO 27001, PCI-DSS 4.0, DORA).
- Executive & Stakeholder Reporting: Define and maintain metrics that communicate security posture, program progress, and incident risk analysis to the CISO, senior executive leadership, and the Board.
- Innovation & Emerging Tech: Stay ahead of global fintech trends, adopting cutting-edge technologies and methodologies—specifically regarding secure AI deployment—to continuously strengthen the organization's security posture.
Here's What We're Looking For:
- Education: Bachelor's degree required in Computer Science, Information Security, or a related technical field. A Master's degree is highly preferred.
- Core Experience: 12+ years of progressive experience in information security, IT risk management, or cyber defense roles. Must be an active technical practitioner with a proven track record of independently performing manual penetration testing, vulnerability exploitation, detection/response activities, and code reviews across cloud and application infrastructures, without relying solely on automated commercial tools.
- Leadership Experience: 3+ years of proven experience in senior leadership or management roles specifically within a security engineering organization, managing people, cross-functional teams and complex security programs.
- Domain Mastery: In-depth technical knowledge of security architecture, secure cloud infrastructure (e.g., AWS/Azure/GCP), application security principles, and adversarial emulation (Red Teaming).
Highly Preferred Certifications
- Core Security: CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager)
- Governance & Risk: CRISC (Certified in Risk and Information Systems Control), CISA (Certified Information Systems Auditor), or ISACA AAISM™ (Advanced in AI Security Management)
- Hands-On Offensive & AI: OffSec OSAI (Offensive Security AI Red Teamer), OSCP (Offensive Security Certified Professional), OSCE (Offensive Security Certified Expert), or SANS GXPN (GIAC Exploit Researcher and Advanced Penetration Tester)
Skills and Abilities
- Strategic & Tactical Balancer with a Commercial Mindset: Highly hands-on and technically skilled. Strong strategic thinker with the ability to contribute to and translate the CISO’s high-level vision into actionable plans and drive successful execution. Balances technical risk reduction with business enablement, ensuring security infrastructure serves as a competitive advantage that unblocks global revenue and enterprise-client acquisition.
- Executive Presence: Exceptional communication and stakeholder management skills, with a demonstrated ability to articulate complex security risks and technical concepts to both engineering teams and executive management/the Board.
- 2nd-Line Cyber Risk Oversight & Governance: Robust capability to operate as a strategic second-line risk leader. Proven experience defining enterprise security risk appetites, establishing governance frameworks, and executing independent control testing to validate that the first line (engineering/product teams) effectively manages cyber risk.
- Defense-in-Depth Expertise: Comprehensive understanding of modern system security design principles, intrusion prevention, API security, and automated vulnerability management.
- High-Pressure Decision Making: Demonstrated capability to prioritize tasks, maintain cross-functional transparency, and make critical risk decisions under pressure during live security incidents.
- Lateral Influencing / Influential Leadership: Ability to collaborate effectively as a trusted partner across the global organization, promoting a collaborative culture of continuous resilience and security awareness.
What We Offer:
- Competitive compensation
- Employee Stock Purchase Plan (ESPP)
- Competitive time off, including Digital Disconnect and FlyBetter Days to volunteer in a cause you believe in.
- Work with brilliant people globally Learn more about their journeys by checking out #InsideFlywire on social media
- Wellbeing Programs (Mental Health, Wellness, Yoga/Pilates/HIIT Classes) with Global FlyMates
- Be a meaningful part in our success - every FlyMate makes an impact
- Great Talent & Development Programs (Managers Taking Flight – for new or aspiring managers, OneFlywire Career Mobility)
Submit today and get started!
We are excited to get to know you! Throughout our process you can expect to meet with different FlyMates including the Hiring Manager, Peers on the team, the VP of the department, and a skills assessment. Your Talent Acquisition Partner will walk you through the steps and be your “go-to” person for any questions.
The US base salary range for this full-time position is $200,000 - 210,000 and benefits. Our salary ranges are determined by role, position level, and location. The range displayed on this job posting reflects the minimum and maximum target for new hire salaries for the position across all US locations. Within the range, individual pay is determined by work location and several other factors, including job-related skills, experience, relevant education and training.
Flywire is an equal opportunity employer and follows a policy of administering all employment decisions and personnel actions without regard to race, color, religion, sex, pregnancy, gender identity, national origin, age, ancestry, physical or mental disability, sexual orientation, genetic disposition or carrier status, veteran status, or any other category protected under applicable national, federal, state or local law.
#LI-Hybrid
- ...Locals only Title: Director of Information Security # Open (if applicable): 1... ...Management (IAM), Security Operations, Risk and Compliance, Consulting and Awareness... ...Managers, Architects, Analysts, and Engineers Key Responsibilities and Accountabilities...SuggestedFull timeContract workFor contractorsWork experience placementWork at officeLocal areaShift work
$78k - $80k
...Overview Northeast Security, Inc. was founded in 1967 and has grown to become one of the largest and most highly regarded security... ...Supervisor experience or equivalent field. Concierge Security Director Requirements: Must have three years of Security Account...SuggestedShift workNight shiftWeekend workAfternoon shift$50 - $60 per hour
...A technology firm specializing in AI is seeking a Director of Credit Risk to join their remote team. This role involves improving AI Assistant outputs related to finance and providing expert feedback. Candidates should have advanced degrees in finance and strong analytical...SuggestedHourly payFull timePart timeRemote workFlexible hours- ...Job Description Position: Director of Risk Management Department: Risk Management Schedule: Full Time The Director of Risk Management oversees the operation of the Risk Management and Patient Safety programs and provides guidance to clinical staff....SuggestedFull timeWork at officeImmediate start
- ...Director of Risk Management Boston, MA 02118 MUST HAVE: Master's degree in healthcare-related field or JD required. CPHRM is required within 6 months of hire, CPPS preferred, CPHQ optional. At least 5 years of direct clinical...Suggested
- ...Director of Cybersecurity and Privacy Risk Advisor About the Company Prestigious international law firm Industry Law Practice Type Privately... ...to spearhead the advancement of its Information Security Governance and Risk functions. The successful...Work experience placement
$180k - $270k
...An exciting opportunity within the Security Trust and Risk (STAR) team whose mission is to ensure... ...: The Senior Manager, Security Risk Engineering is a senior information security and... ...intelligence capability. Reporting into the Director of Security Trust and Risk, you will...$104k - $156k
...Advanced Security Engineer The Advanced Security Engineer is a technically deep, hands-on practitioner who forms the operational backbone... ...technical design of security controls aligned to vulnerabilities, risks, issues and/or events. Support purple-team exercises and...- ...and solutions to customers and prospects. In your role, you will strive to provide an exceptional client experience while minimizing risk. Job Responsibilities: Collaborates with Business Relationship Managers-Acquisition (BRMs) and Business Development...
- ...business development and enhance the Bank's reputation. Ensures compliance with all applicable banking regulations, Bank policies, and risk management standards. Knowledge, Skills Work Experience Bachelor's degree in Business, Finance, Accounting, or a...Work experience placementWork at office
- ...reports, and other relevant documents to assess creditworthiness and risk. Structure and negotiate loan terms, including interest rates... ...suite of benefits designed to support your health, financial security, and overall well-being. Benefits include: competitive...Work at officeLocal area
$50 - $60 per hour
DataAnnotation is committed to creating high-quality AI. We are looking for a Director of Credit Risk to join our team to help train the next generation of AI while enjoying the flexibility of remote work and the freedom to set your own schedule. This role is designed to...Hourly payFull timeContract workPart timeWork experience placementRemote workFlexible hours- Alnylam Pharmaceuticals, Inc. is seeking a Director, Cyber Defense Principal Engineer to lead the cyber defense strategy. This hybrid role, primarily based... ...ideal candidate has 10+ years of experience in cyber security disciplines, including security engineering, detection...
- Senior Cash Management and Treasury Manager Location Remote - United States Employment Type Full time Location Type Remote Department Compensation Forward Financing is a financial technology company based in Boston, Massachusetts with team members...Full timeTemporary workWork at officeRemote workWork from homeFlexible hours
- ...Description: The organization is seeking a visionary Director of Information Security to lead our cybersecurity program and safeguard the university... ...As Director, you will overseecybersecurity operations, risk management, compliance, and awareness programs,ensuring...3 days per week
$128.7k - $193k
We take play seriously. We’re looking for curious adventurers ready to find their party, fueled by imagination and drive to build what’s never been built before. At Hasbro and Wizards of the Coast, you’ll collaborate with passionate teams to reimagine our iconic brands ...Temporary workInterim role- ...Risk Manager Under the direction of the Director of Patient Safety & Risk Management, the Risk Manager is a member of the Patient Safety & Risk Management team of the Dana-Farber Cancer Institute's (DFCI) Quality and Patient Safety (QPS) Department is responsible for...Work at office
$78k - $113k
...Risk Manager The Risk Manager is responsible for the overall management of potential risks and liabilities within Boston Medical Center (BMC) and serves as a role model displaying behaviors that support a strong culture of safety. The Risk Manager responds to patient...Fixed term contractWork experience placementWork at officeFlexible hours- Scorpion Therapeutics in Boston is looking for a compliance expert with 8-10 years of experience in the biotechnology/pharmaceutical industry. This hybrid position involves advising global business colleagues and providing compliance oversight. The ideal candidate will ...
$212.7k - $259.1k
...future! WSP is currently initiating a search for a Senior Risk Manager in Boston, MA. Your Impact Provide risk... ...You Are Required Qualifications: ~ Bachelor's Degree in Engineering, Construction Management, Economics, Finance or relevant field...Contract workLocal areaFlexible hours$71.2k - $166.1k
...Job Description The Senior Federal Information Systems Security Engineer (ISSE) serves as a technical integrator responsible for ensuring that system-to-system connections across federal boundaries are properly documented, approved, and compliant with all required cybersecurity...Contract workTemporary workWork experience placementRelocationFlexible hours$212.7k - $259.1k
...the future! WSP is currently initiating a search for a Senior Risk Manager in Boston, MA. Your Impact Provide risk leadership and... ...required Who You Are Required Qualifications Bachelor’s Degree in Engineering, Construction Management,Economics, Financeor relevant field 12...Contract workLocal area$112k - $130k
...Senior Security EngineerRemote - United StatesJR013945 At Ensono, our Purpose is to be a... ...Summary The Senior Information Security Engineer is responsible for designing,... ...on emerging threats, vulnerabilities, and risk mitigation strategies. Document project...Full timeTemporary workRemote workWork from homeFlexible hours- ...deployment experience, strong troubleshooting skills, CLI proficiency, security mindset, ability to solve complex problems, willingness to... .... Years of experience are less important than demonstrated engineering capability. Candidates transitioning from analyst to engineer...
$75.85k - $126.59k
...Corporate Security Role Take Your Corporate Career to the Next Level Kleinfelder, a Forbes' Top Employer for Engineers in North America, is committed to a people-first culture, technical... ...provides recommendations to minimize risks. Acts as technical leader for the...Live inFlexible hours- ...Network Security Engineer Boston, MA Must be onsite in Boston 3 days a week. ~ Must have strong Palo Alto, Juniper... ...Information Security teams to address present and potential risks. Intrusion Detection/Prevention Systems (IDS/IPS):...Contract work3 days per week
- ...Job Title: Senior Security Engineer Location: Boston Client : Car Guru Need senior resource Check with... ...malicious", add a comment to the ticket and tag the alert as "High-Risk Source IP". # Sample YARA rule of a use case. He...
$125k - $150k
...Security Engineer Boston or New York KKR is a leading global investment firm that offers alternative asset management as well as capital... ...IT teams to prioritize and address vulnerabilities based on risk and impact. Track and report on the status of...Local areaRemote work- ...Security Engineer II The Security Engineer II is a senior level technical resource in Information Security and is responsible for the implementation and effective and efficient maintenance of related technologies. In addition, this individual has practical knowledge...Shift work
$40k
...mission‑critical programs across national security, defense, and public service delivery.... ...a national scale. The Junior Security Engineer supports 24x7 enterprise cybersecurity operations... ...environments Familiarity with risk management, POA&M governance, and compliance...Contract workRemote work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Director of Security Risk Engineering. Be the first to apply!
- risk management associate Boston, MA
- senior risk manager Boston, MA
- head of risk management Boston, MA
- risk management specialist Boston, MA
- director credit risk Boston, MA
- risk management manager Boston, MA
- operational risk manager Boston, MA
- director of risk management Boston, MA
- enterprise risk manager Boston, MA
- principal cloud engineer Boston, MA

