Technical Program Manager, Product and PIN Security Compliance

  • Full-time

Company Description

Square builds common business tools in unconventional ways so more people can start, run, and grow their businesses. When Square started, it was difficult and expensive (or just plain impossible) for some businesses to take credit cards. Square made credit card payments possible for all by turning a mobile phone into a credit card reader. Since then Square has been building an entire business toolkit of both hardware and software products including Square Capital, Square Terminal, Square Payroll, and more. We’re working to find new and better ways to help businesses succeed on their own terms—and we’re looking for people like you to help shape tomorrow at Square.

Job Description

As part of the overall Data Security Governance (DSG) team, we have a shared secure-by-default mission that aims to create and maintain business solutions for our sellers. As part of the Innovation Security Governance (ISG) team, you will focus on security assurance and approval work for Square payment solutions. We collaborate with Manufacturing, Engineering, Industry Relations, and Product teams to ensure that Square products can launch anywhere in the world. We are looking for a dynamic Technical Program Manager to lead Square’s PIN Security Compliance Program and support our Hardware and Mobile Security Compliance programs as they grow. You will provide advisory services to the teams who own systems that are governed by PIN Security rules, monitor compliance and lead external audits as required.

Join us to develop a deep understanding of our products and work with cross-functional teams to help advance our team's mission!

You will:

  • Lead and improve Square’s PIN Security Program as you partner with cross-functional teams to maintain compliance for the existing infrastructure, and collaborate on exciting new projects to help Square continue to scale

  • Manage cross-functional product security evaluation projects, including planning, prioritization, execution, dependency management, risk analysis and mitigation, and relationship management

  • Become highly knowledgeable of the following standards, PCI SPoC, PCI PTS, PCI PIN, Common Criteria and EMVCo Software-based Mobile Payment Security

  • Evolve Compliance Program documentation policies and procedures

  • Take ownership to solve difficult problems that span multiple teams and require tough conversations around ownership and accountability

  • Support Square teams by sharing your experience and expertise, consulting on contracts, security-related sales and marketing material, and engineering design documents

Qualifications

You have:

  • 8+ years of experience with security-related regulatory compliance for financial services or equivalent

  • Relevant certifications (e.g. CISA, CISSP, CISM) or equivalent expertise

  • Experience with product security (embedded device and/or mobile applications) related audits or security program management (PCI, EMVCo, Common.Secc)

  • Experience with balancing internal engineering processes, business needs, and external audit requirements

  • Familiarity with both mobile and embedded device security concepts such as Secure SDLC, White-box Crypto, Root Detection, Tamper Detection

Additional Information

We’re working to build a more inclusive economy where our customers have equal access to opportunity, and we strive to live by these same values in building our workplace. Square is a proud equal opportunity employer. We work hard to evaluate all employees and job applicants consistently, without regard to race, color, religion, gender, national origin, age, disability, pregnancy, gender expression or identity, sexual orientation, citizenship, or any other legally protected class. 

We believe in being fair, and are committed to an inclusive interview experience, including providing reasonable accommodations to disabled applicants throughout the recruitment process. We encourage applicants to share any needed accommodations with their recruiter, who will treat these requests as confidentially as possible.

Additionally, we consider qualified applicants with criminal histories for employment on our team, and always assess candidates on an individualized basis.

Perks

At Square, we want you to be well and thrive. Our global benefits package includes:

  • Healthcare coverage
  • Retirement Plans
  • Employee Stock Purchase Program
  • Wellness perks
  • Paid parental leave
  • Paid time off
  • Learning and Development resources

Square, Inc. (NYSE: SQ) builds tools to empower businesses and individuals to participate in the economy. Sellers use Square to reach buyers online and in person, manage their business, and access financing. Individuals use Cash App to spend, send, store, and invest money. And TIDAL is a global music and entertainment platform that expands Square's purpose of economic empowerment to artists. Square, Inc. has offices in the United States, Canada, Japan, Australia, Ireland, Spain, Norway, and the UK.

Privacy Policy