Requirements

Graduate degree in computer science, engineering, cybersecurity, or a related field, or a bachelor's degree with extensive experience in a similar security role exceeding 8 years.
At least three years of experience working alongside corporate executives and participating in large-scale projects with previous involvement in an engineering and software development company and familiarity with the Secure Development Lifecycle.
Outstanding organization skills, strong planning skills, communication skills, and high attention to detail. The position requires speaking publicly to senior leadership and customers.
Proven track record building technical rapport and enduring relationships within diverse teams.
Proficient knowledge of public cloud infrastructure and architecture (AWS, Azure, GCP) along with relevant security concepts and obstacles.
Mastery in core security principles, techniques, and recognized standards such as authentication, permissions, documentation, standards, data oversight, and software lifecycle.
Proficient understanding of application and operations security vulnerabilities (such as OWASP Top 10) and methods for addressing them.
Driven and excellent at communicating with others.
Ability to multitask and switch between multiple high urgency projects.

What you'll be doing

Analyze security risks using real-world security data and systems automation.
Conduct security evaluations, encompassing vulnerability and risk assessments.
Perform threat modeling, code evaluations, security examinations, and risk appraisals.
Provide product security engineering recommendations and resolve integration and testing issues.
Maintain up-to-date knowledge related to security threats, vulnerabilities, and mitigations; circulate this knowledge throughout the business units.
Consistently share in-depth information on product security developments and vulnerabilities with senior business unit leaders.
Contribute to security program development by identifying new or emerging opportunities to apply security principles and technologies.
Regularly improve security posture assessment of your portfolio and analyze risk.
Foster close, cooperative relationships with peer leaders, leadership, and other teams to maintain alignment across functions.
Amplify the identification of risks and problems. Acquire mentorship from collaborators to develop, communicate, and lead all aspects of key tasks and direct prioritization among projects and programs.
Seek to understand the big picture objectives, clarify end goals, and look to be a strategic partner with management in driving the strategy and accomplishing security goals.
Act as a reliable assistant to business unit leadership to improve the overall security stance of the product.
Work independently with a geographically dispersed team.

Experience with security issues in mobile and desktop applications.
Experience with emerging threats, mitigations, and industry trends.
Familiarity with industry standard methodologies in application & operations security.
Familiarity with compliance frameworks such as FedRAMP, ISO 27001, SOC2, HIPAA, FERPA, and PCI.
Familiarity with Lean Enterprise/Agile/DevOps/SecDevOps development methodologies is required.
Extensive background in collaborating with SaaS/cloud-based offerings.
Familiarity and background using standard security tools like Kali Linux, Nessus, Qualys, BurpSuite, and more.
Solid knowledge and understanding of containerized applications: Docker, OpenShift, Kubernetes, etc.
Industry Certifications such as CISSP, CASP+, CISM, CISA, GCIH, CFCE, GCFA, and/or GCFE, or equivalent job experience.