Verafin - Sr. Manager - Information Security (Red Team)
About the role
We are seeking a proven leader to head our Offensive Security (Red) Team. In this pivotal role, you will provide strategic direction and hands-on expertise to strengthen Nasdaq Verafin’s security posture, focusing on our cloud infrastructure and enterprise applications.
WhatYou’llDo:
-
Lead and oversee a team of Red Team professionals, executing offensive security assessments across applications and AWS environments, with a focus on high-risk areas and APIs.
-
Manage the Red Team intake process, ensuring your team is prepared, and all prerequisites are met to enable efficient and effective testing engagements.
-
Guide your team in conducting AWS and Application focused adversary simulations, mapping attacker paths, and translating findings into actionable, prioritized results.
-
Supervise the delivery of clear, concise reports and metrics, ensuring findings are chained into realistic attack scenarios and leading the team in reporting risk-based remediation efforts.
WhatYou’llBring:
-
Bachelor's degree in Computer Engineering, Computer Science, or equivalent experience.
-
3+ years of hands-on penetration testing and adversary simulation experience (Burp Suite, OWASP ZAP, AWS attack-path tools).
-
Strong background in secure software development and adversary tactics, with the ability to assess and prioritize risks using industry frameworks.
-
Excellent communicator—able to translate technical risks for both technical and non-technical audiences and guide practical remediation.
-
Demonstrated technical expertise and deep industry knowledge across diverse computing environments.
Preferred Skills:
-
Experience leveraging emerging technologies in offensive security (e.g., LLMs for recon, payload generation, attack-path analysis, detection evasion).
-
Interest in leadership development and long-term growth within Nasdaq Verafin.
-
Relevant certifications (OSCP/OSCP+, OSWE, CRTO/CRTL, GIAC [GXPN, GWAPT]).
-
Experience in financial technology or regulated industries.
This position can be located in St. John’s or Toronto, and offers the opportunity for a hybrid work environment (3 days a week in office)**, providing flexibility and accessibility for qualified candidates.
Come as You Are
Nasdaq is an equal opportunity employer. We positively encourage applications from suitably qualified and eligible candidates regardless of age, color, disability, national origin, ancestry, race, religion, gender, sexual orientation, gender identity and/or expression, veteran status, genetic information, or any other status protected by applicable law.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request an accommodation.
Not the right fit? Search for Verafin jobs in Toronto, ON
Similar jobs you might like
Verafin - Sr. Manager - Information Security (Red Team)
About the role
We are seeking a proven leader to head our Offensive Security (Red) Team. In this pivotal role, you will provide strategic direction and hands-on expertise to strengthen Nasdaq Verafin’s security posture, focusing on our cloud infrastructure and enterprise applications.
WhatYou’llDo:
-
Lead and oversee a team of Red Team professionals, executing offensive security assessments across applications and AWS environments, with a focus on high-risk areas and APIs.
-
Manage the Red Team intake process, ensuring your team is prepared, and all prerequisites are met to enable efficient and effective testing engagements.
-
Guide your team in conducting AWS and Application focused adversary simulations, mapping attacker paths, and translating findings into actionable, prioritized results.
-
Supervise the delivery of clear, concise reports and metrics, ensuring findings are chained into realistic attack scenarios and leading the team in reporting risk-based remediation efforts.
WhatYou’llBring:
-
Bachelor's degree in Computer Engineering, Computer Science, or equivalent experience.
-
3+ years of hands-on penetration testing and adversary simulation experience (Burp Suite, OWASP ZAP, AWS attack-path tools).
-
Strong background in secure software development and adversary tactics, with the ability to assess and prioritize risks using industry frameworks.
-
Excellent communicator—able to translate technical risks for both technical and non-technical audiences and guide practical remediation.
-
Demonstrated technical expertise and deep industry knowledge across diverse computing environments.
Preferred Skills:
-
Experience leveraging emerging technologies in offensive security (e.g., LLMs for recon, payload generation, attack-path analysis, detection evasion).
-
Interest in leadership development and long-term growth within Nasdaq Verafin.
-
Relevant certifications (OSCP/OSCP+, OSWE, CRTO/CRTL, GIAC [GXPN, GWAPT]).
-
Experience in financial technology or regulated industries.
This position can be located in St. John’s or Toronto, and offers the opportunity for a hybrid work environment (3 days a week in office)**, providing flexibility and accessibility for qualified candidates.
Come as You Are
Nasdaq is an equal opportunity employer. We positively encourage applications from suitably qualified and eligible candidates regardless of age, color, disability, national origin, ancestry, race, religion, gender, sexual orientation, gender identity and/or expression, veteran status, genetic information, or any other status protected by applicable law.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request an accommodation.
Not the right fit? Search for Verafin jobs in Toronto, ON