Product Security Director

About The Position

Requirements

• 5+ years familiarity securing Cloud, Mobile or Client/Server software (including embedded software systems)
• 2+ years leadership experience with software development
• 10+ years experience in technology, cybersecurity
• Strong knowledge and history of running programs with cross functional teams with internal and external stakeholders
• Experience working with clients and/or working with engineering teams deploying products
• Excellent communication (written and oral) and leadership skills

Nice To Haves

• Understanding of ‘security by design' principles and architecture level security concepts
• Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities
• Working knowledge of Cyber security frameworks - i.e. ISA/IEC 62243, NIST 800-53, NIST RMF, etc.
• Understanding of development methods and methodologies - i.e. Agile, SAFe, SCRUM, etc.
• Understanding of DevSecOps
• Experience conducting secure product reviews leveraging both automated (i.e. SAST, DAST, SCA, etc.) & manual activities (Penetration Testing)
• Certifications in security and privacy demonstrating deep practical knowledge such as CSSLP or CISSP

Responsibilities

• Support Engineering teams, customers, and the BA Cyber Security organization to lead and steer critical programs
• Provide high-level leadership to the cybersecurity department, overseeing all aspects of cybersecurity operations
• Collaborate with other business leaders to integrate cybersecurity into the overall business strategy
• Represent the cybersecurity department in discussions with regulatory bodies, auditors, and external stakeholders
• Report regularly to leadership on the overall performance and status of the cybersecurity department