Security Manager Sr - Application Security Program Leader
About The Position
At PNC, our people are our greatest differentiator and competitive advantage in the markets we serve. We are all united in delivering the best experience for our customers. We work together each day to foster an inclusive workplace culture where all of our employees feel respected, valued and have an opportunity to contribute to the company’s success. As a Security Manager Sr within PNC's Technology organization, you will be based in Pittsburgh, PA; Cleveland, OH; Birmingham, AL; Dallas, TX or Denver, CO. Role Overview: The Sr Security Manager will lead and manage our Software Security Group, playing a key role in the broader Application Security Program. This leader will be responsible for overseeing various security programs initiatives integrated in our SLDC, ensuring the adherence to secure coding and testing requirements, and fostering a culture of security awareness among developers. PNC is an in-office company that fosters a supportive culture where employees can thrive and achieve balance. We encourage candidates to connect with their recruiter and hiring manager to understand workplace expectations and ensure the role aligns with their goals. PNC will not provide sponsorship for employment visas or participate in STEM OPT for this position. Job Description Manages multiple teams focused on maintaining confidentiality, integrity, and availability of data, systems, and networks. Responsible for management and oversight of applicable security technology products for network, systems and data. Develops, implements and enhances policies and procedures to improve the operation and effectiveness of the organization. Provides technical and professional advice or knowledge regarding various administrative areas of responsibility. Oversees and manages administrative staff. Provides professional and personal growth and development to individuals as appropriate. PNC Employees take pride in our reputation and to continue building upon that we expect our employees to be: Customer Focused - Knowledgeable of the values and practices that align customer needs and satisfaction as primary considerations in all business decisions and able to leverage that information in creating customized customer solutions. Managing Risk - Assessing and effectively managing all of the risks associated with their business objectives and activities to ensure they adhere to and support PNC's Enterprise Risk Management Framework.
Requirements
- Successful candidates must demonstrate appropriate knowledge, skills, and abilities for a role.
- Roles at this level typically require a university / college degree.
- Industry-relevant experience is typically 8+ years.
- At least 5 years of prior management experience is typically required.
- Proven leadership experience with a moderate to large scope of responsibility is required.
- In lieu of a degree, a comparable combination of education, job specific certification(s), and experience (including military service) may be considered.
Nice To Haves
- Access Control (AC)
- Building Architecture
- Customer Solutions
- Disaster Recovery Planning
- Information Security
- Network Security
- Physical Security
- Risk Assessments
- Security Technologies
- Information Assurance
- Information Security Audits
- Information Security Management
- Information Security Technologies
- IT Environment
- IT Standards, Procedures & Policies
- Knowledge of Organization
- Planning: Tactical, Strategic
Responsibilities
- Threat Modeling: Lead our threat modeling practice to identify and prevent potential security threats and vulnerabilities in our software applications
- Secure Coding and Testing Requirements: Establish and provide secure coding standards and testing requirements.
- Developer Secure Coding Training: Develop training programs and materials to enhance developers' understanding of security principles and best practices.
- Developer Security Coaching: Offer ongoing security coaching and remediation assistance to developers, helping them to navigate complex security issues and stay updated on emerging threats and mitigation techniques
- Security Champions: Lead our Security Champions program, where designated developers act as security advocates within their teams. Provide training and support to Security Champions, empowering them to promote security awareness and best practices among their peers.
- API Security: Oversee our API security program, ensuring that all APIs are designed, developed, and tested with security in mind. Collaborate with other Enterprise Information Security programs to ensure comprehensive coverage of APIs to improve our security posture
- Security Automation: Help teams automate recurring security tasks across our Enterprise Information Security Program
Benefits
- PNC offers a comprehensive range of benefits to help meet your needs now and in the future.
- Depending on your eligibility, options for full-time employees include: medical/prescription drug coverage (with a Health Savings Account feature), dental and vision options; employee and spouse/child life insurance; short and long-term disability protection; 401(k) with PNC match, pension and stock purchase plans; dependent care reimbursement account; back-up child/elder care; adoption, surrogacy, and doula reimbursement; educational assistance, including select programs fully paid; a robust wellness program with financial incentives.
- In addition, PNC generally provides the following paid time off, depending on your eligibility: maternity and/or parental leave; up to 11 paid holidays each year; 9 occasional absence days each year, unless otherwise required by law; between 15 to 25 vacation days each year, depending on career level; and years of service.
- To learn more about these and other programs, including benefits for full time and part-time employees, visit pncthrive.com.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
