\nThe Chief Information Security Officer will lead MeridianLink’s information security functions. This position provides leadership and oversight for MeridianLink’s security program. Responsible for both IT security operations, and information security compliance with a focus on MeridianLink’s product security architecture and SaaS security operations.\nThe position will work with peers in Engineering, Enterprise Architects and the Product Owners to provide technical insight and industry perspective in the creation, delivery, and integration of complex and comprehensive security solutions.\nKey Responsibilities\nManagement and Leadership\n\n\n•Technical experience to lead on architectural and technical security by design\n•Develop strong working relationships with technology and business partners across multiple locations in support of security, compliance, and audits for the organization.\n•Provide strong positive and collaborative leadership to executive teams, other departments such as engineering, product management, legal, support, and IT. Also, lead and manage Information Security teams composed of internal and external resources\n•Take initiative to identify gaps and changes required to address security threats and compliance with products.\n•Present risk information to executives and advise on remediations.\n\n\nInformation Security\n\n\n•Responsible for the review and certification of all back up and disaster recovery plans\n•Oversee the secure development, design and implementation of new applications and changes to MeridianLink SaaS applications\n•Direct and manage computing and information security plans, policies, programs and project schedules\n•Continue to build and enhance secure application design and development policies and practices\n•Partner with IT to ensure that the technical and security needs of internal systems and services are met\n•Develop and maintain security policies and procedures including, but not limited to, incident response plans, business continuity plans, etc.\n•Lead the implementation and operation of security services such as vulnerability assessment, threat monitoring and incident response\n•Oversee security design and architecture including IaaS and PaaS cloud migrations\n•Lead vulnerability, change, and configuration management, for applications and infrastructure\n•Oversee administration of security services, including antivirus, IDS/IPS, data loss prevention, and security monitoring.\n•Customer facing responsibilities, such as pre-sales, facilitating due diligence requests, RFPs, and customer security concerns\n•First line incident response and support for remediation\n•Provide Identity and Access management solutions to ensure appropriate access to sensitive data\n•Monitor the SDLC and ensure that coding is done with secure best practices (OWASP framework or equivalent) including modern deployment methods such as CI/CD pipelines\n \nSecurity Assessments and Audit Management\n•Experience leading red/blue security teams.\n•Conduct application assessments (design reviews and pen tests) and lead implementation of associated application security technologies\n•Perform risk assessments on new technologies or discovered vulnerabilities\n\n\nInformation Security Awareness\n\n\n•Implement organization-wide security awareness initiatives and provide timely information to employees and leadership regarding new and emerging threats\n•Collaborate with all teams to communicate and enforce security controls\n\n\nLegal and Governance\n\n\n•Develop and maintain processes, policies, and technical controls in support of certifications programs and continual compliance with ISO/IEC 27001/2, SOC 1, SOC 2, and other applicable international privacy regulations.\n•Continuously monitor security controls for all IT Security frameworks\n•Oversee customer Information Security audits\n\n\nQualifications Education & Experience\nBachelor’s degree in a relevant field or equivalent years of experience is required. Equivalent years of\nexperience are determined as one year of technical experience for every year of college requested.\n\n\n•Minimum 10 years of experience in Enterprise Information and Product Cyber security\n•Strong knowledge of Secure Development Lifecycle and CI/CD automation tools (TF, Git, Jenkins)\n•Knowledge of regulatory and standards-based compliance related to cloud and mobile applications, and data confidentiality (e.g., GDPR, FEDRAMP/FISMA, SOC 2, and ISO 27001, etc.)\n•Experience with the application of risk identification and evaluation techniques\n•Advanced knowledge of Cyber Security and full knowledge of multiple (full-stack) related engineering functions\n•Preferred experience with securing cloud architectures (Azure/AWS) and/or Kubernetes\n•Preferred experience leading red/blue security teams and working with engineering teams to remediate findings\n\n\nSkills/Certifications\nInformation Security certifications such as the Certified Information Systems Security Professional Certification (CISSP) or Certified Information Security Manager Certification (CISM) is required\nExperience with Financial services or Software-as-a-Service (SaaS) companies\n\n\n\n\n\n\n\n\n\nMeridianLink has a wonderful culture where people value the work they do and appreciate each other for their contributions. We develop our employees so they can grow professionally by preferring to promote from within. We have an open-door policy with direct access to executives; we want to hear your ideas and what you think. Our company believes that to be productive in the long term, we must have a genuine work-life balance. We understand that employees have families and full lives outside of the office. To that end, we honor their personal commitments.\n\n\nMeridianLink is an Equal Opportunity Employer. We do not discriminate based on race, religion, color, sex, age, national origin, disability, or any other characteristic protected by applicable law.\n\n\nMeridianLink runs a comprehensive background check, credit check, and drug test as part of our offer process.\nSalary range of $269,600 to 346,100. [It is not typical for offers to be made at or near the top of the range.] The actual salary will be determined based on experience and other job-related factors permitted by law including geographical location.\n\n\nMeridianLink offers:\nPotential For Equity-Based Awards\nInsurance coverage (medical, dental, vision, life, and disability)\nFlexible paid time off\nPaid holidays\n401(k) plan with company match\nRemote work\nAll compensation and benefits are subject to the terms and conditions of the underlying plans or programs, as applicable and as may be amended, terminated, or superseded from time to time.\n#LI-REMOTE \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, SaaS, Cloud and Mobile jobs that are similar:\n\n $55,000 — $87,500/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nUnited States

\nJob Summary \nWorking within a SRE team with a devops culture, you’re heavily involved in all things technical, including automating, troubleshooting, performance tuning, capacity planning, incident analysis and other systems and software related tasks to cloud and data center operations.  Along with relevant IT experience, you bring a strong sense of ownership and a passion for learning new things. \n\n\nRESPONSIBILITIES -\nThe Site Reliability Engineer is part of the infrastructure operations team but will also work closely with software development teams to deliver infrastructure as a service that meets the growing and changing needs of the business.  \nSpecific responsibilities include:\n•Creates and manages infrastructure solutions that are re-usable and flexible across compute and storage of private and public infrastructure.\n•Supports production and lower environment systems in public, private, and hybrid deployments.\n•Participates in the continuous development, monitoring and troubleshooting of highly configurable and continuously deployable environments in public and private infrastructure.\n•Protects the company's data, tools, and information systems by adhering to Operational and Security policies and procedures throughout the service delivery lifecycle.\n•Troubleshoots infrastructure issues, creates and manages incidents and problems to prevent and reduce the impact of customer-affecting incidents.\n•Administers & manages storage systems, data backups, system redundancies, and disaster recovery systems.\n•Analyzes, installs, builds, modifies, and supports operating system templates and application stacks.\n•Understands the interrelationship of infrastructure components and applications.\n•Uses diagnostic tools to analyze bottlenecks and performance and with development and operations teams to provide feedback on site performance, monitoring, and overall stability of Meridianlink platform and products. \n•Creates internal documentation, playbooks, and other consolidated knowledge repositories that can help existing teams and future hired resources.\n•Participates in feature and story grooming planning sessions.\n•Participates in 24x7 on-call rotation and manage on-call rotations.\n•Automation of tasks for speed and consistency leveraging IaC.\n\n\n\n\n\n\nREQUIRED QUALIFICATIONS\n•Excellent understanding of hypervisor and infrastructure API technologies, private and public infrastructure solutions.  (VMware, AWS, Azure)\n•Knowledge of public, private and hybrid infrastructure solutions and knowledge of cloud system engineering principles and considerations.\n•Familiar with RDBMS databases such as Microsoft SQL Server.\n•Knowledge of Agile Methodology and continuous integration/delivery processes.\n•Familiarity with revision control systems\n•Must be able to work independently and as part of a team on multiple overlapping projects.\n•Strong problem solving and analytical skills with an investigative mindset. This means not only solving problems effectively but also investigating its root cause and tracing the various factors leading up to an incident as well as crafting a summary of all contributing factors. \n•Strong written and oral communication skills, including the ability to facilitate meeting discussions to identify effective solutions.\n•Possess a “postmortem culture” - investigate the facts and events leading up to an incident blamelessly to fine-tune the infrastructure for the future, preventing outages arising from the exact cause.\n•Good understanding of load/resource management, comprising load balancing, load shedding, and auto scaling. \n•Specializes in one or many operating systems or infrastructure technologies.\n•Must have the capacity to rebalance workloads with minimal supervision.\n•Must be able to work effectively with cross-functional departments with varying degrees of technical experience.\nREQUIRED EXPERIENCE\n•Minimum of 4 years of system engineering experience in a virtualized environment and/or  Cloud environment. AWS experienced preferred.\n•4 years of enterprise experience including monitoring and tuning multi-tiered server infrastructures or experience in distributed, highly available, high performance, scalable cloud applications.\n•Scripting skills with PowerShell and at least one other scripting language. \n•Experience with infrastructure automation and monitoring tools (Terraform/Puppet/Chef/Ansible).\n•Prior experience working with developers, DBAs Network Engineers to resolve bugs and performance problems.\n•Ability to understand application configuration that is running on the server and help developers leverage system features and functionality.\n•Experience with Kubernetes preferred. \n\n\nMeridianLink has a wonderful culture where people value the work they do and appreciate each other for their contributions. We develop our employees so they can grow professionally by preferring to promote from within. We have an open-door policy with direct access to executives; we want to hear your ideas and what you think. Our company believes that to be productive in the long term, we must have a genuine work-life balance. We understand that employees have families and full lives outside of the office. To that end, we honor their personal commitments.\nMeridianLink is an Equal Opportunity Employer. We do not discriminate based on race, religion, color, sex, age, national origin, disability, or any other characteristic protected by applicable law. \nMeridianLink runs a comprehensive background check, credit check, and drug test as part of our offer process.\nSalary range of $104,000 to $146,800. [It is not typical for offers to be made at or near the top of the range.] The actual salary will be determined based on experience and other job-related factors permitted by law including geographical location.\nMeridianlink offers:\n\n\nPotential For Equity-Based Awards\nInsurance coverage (medical, dental, vision, life, and disability)\nFlexible paid time off\nPaid holidays\n401(k) plan with company match\nRemote work\nAll compensation and benefits are subject to the terms and conditions of the underlying plans or programs, as applicable and as may be amended, terminated, or superseded from time to time. \n#LI-REMOTE\n\n\n\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to DevOps, Cloud, API, Microsoft and Engineer jobs that are similar:\n\n $60,000 — $110,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nUnited States

As an Associate UX Designer you will design and help drive initiatives that help MeridianLink innovate and shake up the banking industry. This is not a web site or screen design role. You will collaborate with product management, engineering and executive leadership to apply user-focused design thinking and data-backed decisions to create efficient, effective, and enjoyable user experiences for B2B2C mobile-first responsive applications. \n \nWe are looking for a self-starter and true team player. The ideal candidate will be able to give and take constructive criticism; make UX best practices informed decisions; know when to reach out for research; be able to apply existing design systems; and communicate their ideas via online tools like Zoom and Teams. \n \n \n RESPONSIBILITIES\n \n- Design solutions that are delightful to use, meet functional fitness, and align with technical business objectives and project constraints  \n- Conduct problem identification through various discovery methods  \n- Create prototypes ready to be user tested and iterated upon \n- Present design artifacts to internal and external stakeholders  \n- Create appropriate design documentation including sketches, mockups, wireframes, storyboards, flow diagrams, personas, scenarios, use cases, functional design specifications, and prototypes \n- Adhere to style guides and standards to contribute towards consistency in user experience \n- Participate in design critiques providing constructive criticism and sharing knowledge \n \n \nSKILLS & EXPERIENCE \n \nRequired: \n- Portfolio highlighting visual design skills as well as UX thought process and decisioning \n- Working knowledge of software design principles and patterns \n- Excellent communication skills (verbal, written, visual) to explain complex ideas simply \n- Empathy, Humility, Responsibility \n \nPreferred: \n- Degree from an accredited college/university in Design, Research, Human Computer Interaction \n- Prior experience with design and collaboration tools (FigJam, Teams, Zoom, Jira) \n- Familiarity with various software development methodologies (SCRUM, Agile, Waterfall) \n- Experience with responsive design \n \n MeridianLink enables entrepreneurs and consumers to achieve the American dream by creating technological solutions that fuel the engine for financial growth.  We believe in the principles of empowerment, collaboration, individual achievement, and innovation. \n \nAt MeridianLink, we work together to design, implement, test, and deliver state-of-the-art web applications for the financial services industry.   \n \n \nOUR CULTURE \n \nOur very low turnover is a testament to our wonderful culture where people value the work they do and appreciate each other for their contributions.  MeridianLink develops our employees so they can grow professionally by preferring to promote from within.  We have an open door policy with direct access to executives; we want to hear your ideas and what you think.  Our company believes that to be productive in the long term, we must have a genuine work-life balance.  We understand that employees have families and full lives outside of the office. To that end, we honor their personal commitments.  \n \n \nCOMPENSATION \n \nIn addition to a competitive salary, MeridianLink also offers: \n \nOpportunities to advance your career.  Each employee receives assignments that are aligned with their experience, passions, and strengths with the intentions of enhancing their professional career.   \n \nExcellent benefits:  401(k) retirement plan with company matching and paid sick leave for all employees. In addition, full time employees are eligible for medical, dental, vision and life insurance, plus vacation time. \n \nMeridianLink is a Remote-First company. However, we also have multiple locations to allow our team members to work on-site and/or host meetings with clients.  \n\nMeridianLink has a wonderful culture where people value the work they do and appreciate each other for their contributions. We develops our employees so they can grow professionally by preferring to promote from within. We have an open door policy with direct access to executives; we want to hear your ideas and what you think. Our company believes that to be productive in the long term, we must have a genuine work-life balance. We understand that employees have families and full lives outside of the office. To that end, we honor their personal commitments. \n\nMeridianLink is an Equal Opportunity Employer. We do not discriminate on the basis of race, religion, color, sex, age, national origin, disability or any other characteristic protected by applicable law.  \n \nMeridianLink runs a comprehensive background check, credit check and drug test as part of our offer process.\n#LI-REMOTE
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nUnited States