Product Security National Manager

About The Position

Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field; advanced degree preferred.
• Extensive and progressive experience of 12+ years in application security, with a focus on secure software development practices and techniques.
• At least 5 years in a leadership role focused on product security or application security.
• Strong understanding of web application security vulnerabilities and mitigation strategies, such as OWASP Top 10.
• Proficiency in programming languages commonly used in web application development, such as Java, Python, or JavaScript.
• Certifications such as CISSP, CSSLP, CEH, or similar are highly desirable.
• Excellent analytical and problem-solving skills, with the ability to analyze complex application security issues and recommend effective solutions.
• Strong leadership and communication skills, with the ability to collaborate effectively with cross-functional teams and communicate technical concepts to non-technical stakeholders.

Nice To Haves

• Experience with cloud security, containerization, and DevSecOps practices is a plus.
• Experience with developing and Implementing Cyber Security Policies.
• Risk Management Experience in a regulated environment.
• Knowledge of Cyber Security Regulations and Laws.
• Cyber Incident Response experience.

Responsibilities

• Define and drive the product security strategy aligned with business objectives and industry best practices.
• Lead the product security team responsible for leveraging the outputs of threat modeling, secure design reviews, vulnerability assessments, and security testing.
• Collaborate with product managers, engineers, and architects to integrate security requirements and controls into the product development lifecycle (SDLC).
• Oversee security risk assessments and mitigation plans for new and existing products.
• Lead the design and implementation of product security policies, standards, and best practices in alignment with industry standards and regulatory requirements.
• Safeguard our organization’s products with a comprehensive understanding of their security posture spanning every stage of the software lifecycle, enabling rapid, resilient delivery of value to customers.
• Partner with security architecture, application security, cyber defense, product, IT operations, risk and governance ensuring products are secure.
• Leverage data-driven practices—centered on introducing an Application Security Posture Management (ASPM) platform—to continuously assess, prioritize risk remediation across applications, services, and pipelines.
• Monitor and analyze security incidents related to applications, and coordinate incident response and remediation efforts as needed.
• Stay current with emerging threats, vulnerabilities, and industry trends in product security.
• Develop and maintain documentation related to product security architecture, processes, and procedures.

Benefits

• A work environment built on teamwork, flexibility, and respect
• Professional growth and development programs to help advance your career, as well as tuition reimbursement
• Vehicle purchase & lease programs
• Comprehensive health care and wellness plans for your entire family
• Toyota 401(k) Savings Plan featuring a company match, as well as an annual retirement contribution from Toyota regardless of whether you contribute
• Paid holidays and paid time off
• Referral services related to prenatal services, adoption, childcare, schools and more
• Relocation assistance (if applicable)