Director of Security Risk Engineering
Job in
Boston, Suffolk County, Massachusetts, 02298, USA
Listed on 2026-06-14
Listing for:
Flywire
Full Time
position Listed on 2026-06-14
Job specializations:
-
IT/Tech
Cybersecurity, Information Security, Data Security, Systems Engineer
Job Description & How to Apply Below
Are you ready to trade your job for a journey? Become a Fly Mate!
Passion, excitement & global collaboration are all core to what it means to be a Fly Mate. At Flywire, we're on a mission to deliver the world's most important and complex payments. We use our Flywire Advantage - the combination of our next-gen payments platform, proprietary payment network and vertical specific software, to help our clients get paid, and help their customers pay with ease - no matter where they are in the world.
What more do we need to truly be unstoppable? Perhaps, that is you!
Who we are:
Flywire is a global payments enablement and software company, founded more than a decade ago to solve high-stakes, high-value payments in higher education. We've since scaled into new regions and industry verticals and expanded our product offerings to deliver meaningful value to our clients around the world.
Today we support more than 5,100 clients across the global education, healthcare, travel & B2B industries, with diverse payment methods across 240 countries & territories and more than 140 currencies.
With over 1,200 global Fly Mates, representing more than 40 nationalities, and in 12 offices world-wide, we're looking for Fly Mates to join the next stage of our journey as we continue to grow.
Job Description
The Opportunity:
As the Director of Security Risk Engineering, you will serve as a key senior leader working in direct partnership with the CISO to drive, shape, and mature Flywire's global enterprise security infrastructure and systems. In this role, you will bridge the gap between high-level security strategy and tactical engineering execution across six core domains:
Application Security, AI Security, Cloud Security, Corporate Security, Security Operations (Sec Ops), and Red Teaming (Penetration Testing).
In partnership with the internal stakeholder organizations, you will lead the organizational shift from technical recovery to global enterprise operational resilience, managing a highly impactful program that safeguards our global payment rails while fostering a culture of collaboration, innovation, and continuous improvement. A solid working knowledge of all aspects of cloud-native infrastructure, software applications, AI/LLM model development, governance & validation, and automated risk mitigation is required.
Responsibilities:
* Strategic Domain Leadership:
Define, implement, and monitor a comprehensive security engineering strategy across Application Security, AI Security, Cloud Security, Corporate Security, Security Operations (Sec Ops/Incident Detection & Response), and Red Teaming (Penetration Testing), aligning initiatives with global business objectives and emerging financial threats.
* Team Management & Mentorship:
Support the CISO to lead and manage the global security engineering organization, including hiring, training, mentoring, performance management, and budget oversight.
* Secure Architecture & Governance:
Oversee the design and continuous improvement of secure architecture for systems, cloud infrastructure, networks, and applications, ensuring strict alignment with security best practices.
* Global
Cross-Functional Collaboration:
Partner with Business, Development, Dev Ops, Product, Program, Risk/Compliance, and IT leaders to seamlessly integrate security controls into all phases of the engineering and CI/CD lifecycle. Engage actively with external stakeholders, auditors and global regulators on related fronts.
* Advanced Cyber Risk Efficacy:
Leverage AI and automated tooling to develop proactive measures, threat intelligence capabilities, and scalable defenses against vulnerabilities across all engineering domains.
* Adversarial / Penetration Testing:
Personally adopt an attacker's mindset to identify complex attack chains, logic flaws, and zero-day vulnerabilities within financial platforms and product architectures.
* Incident Response & Operational Resilience:
Direct and coordinate responses to critical enterprise security incidents, managing containment, forensic investigation, and rapid remediation efforts alongside Sec Ops.
* Regulatory Compliance Frameworks:
Maintain an information security framework that ensures continuous readiness for strict industry audits and regulatory compliance requirements globally (e.g., NIST CSF 2.0, ISO 27001, PCI-DSS 4.0, DORA).
* Executive & Stakeholder Reporting:
Define and maintain metrics that communicate security posture, program progress, and incident risk analysis to the CISO, senior executive leadership, and the Board.
* Innovation & Emerging Tech:
Stay ahead of global fintech trends, adopting cutting-edge technologies and methodologies-specifically regarding secure AI deployment-to continuously strengthen the organization's security posture.
Qualifications
Here's
What We're Looking For:
* Education:
Bachelor's degree required in Computer Science, Information Security, or a related technical field. A Master's degree is highly preferred.
* Core
Experience:
12+ years of…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×