Senior Manager, Product Security Engineering

Aristocrat Technologies•Las Vegas, NV

About The Position

At Aristocrat, we strive to craft a world-class environment where innovation and ambition are central. Our mission is to bring happiness to life through the power of play. As a Senior Manager, Security Engineer, you will have a key role in securing our latest gaming products. This is an outstanding opportunity to lead a team committed to flawless security efforts, fostering Aristocrat’s mission while keeping our products safe and competitive. You will collaborate with Global Information Security leadership and Security Architecture to align security initiatives with company goals. You will drive the optimization and automation of security measures applied to products, ensuring strong risk management and compliance with industry standards, supporting efforts to shift left and secure our products. Your role will involve multi-functional collaboration with security teams dedicated to building solutions, enterprise engineering, operations, and governance. You will also engage closely with Aristocrat Labs and Product Development teams to effectively mitigate security threats as needed. Additionally, you will nurture innovation in security practices, positioning Aristocrat as an inspiring leader in the cybersecurity landscape.

Requirements

Bachelor’s degree in Cybersecurity, Information Security, Information Systems, or a related field.
10+ years of relevant experience.
Minimum of 6 years of multifaceted experience leading information technology and/or product security teams in engineering, building, or operations.
Proven experience working with a geographically dispersed team.
Proven experience with product security functions and safeguards including Secure Development Lifecycle (SDL) Technologies, Static Application Security Testing (SAST) tools, Dynamic Application Security Testing (DAST) tools, Software Composition Analysis (SCA) tools, and Application Security Posture Management (ASPM) tools.
Familiarity with Open Web Application Security Project (OWASP) SAMM (Software Assurance Maturity Model) framework.
Experienced knowledge of information security technologies, networking, cloud, and infrastructure architecture in a global capacity required.
Proven ability to develop and track key performance metrics

Responsibilities

Lead a group of cybersecurity engineers in the creation, deployment, and upkeep of the organization's product security measures.
Support the Confidentiality, Integrity, and Availability of product development practices.
Collaborate with Security Architecture in choosing, evaluating, implementing, overseeing, operating, automating, and sustaining Aristocrat's protective systems for the product.
Align and complete Global Information Security’s strategy and program roadmap developed and maintained by Security Architecture.
Develop product security engineering rigor, standards, and effective operations.
Partner with cybersecurity operations, attack surface management, and threat intelligence for continuous control improvement activities.
Maintain timely, accurate, and effective metrics & reporting related to product security measures for critical applications to, and for, executive-level management.
Aid in following up on product security issues or prospects for improving security risk.
Provide domain expertise on cybersecurity standards, strategies, and areas of opportunity to optimize product security practices & controls.
Stay ahead of emerging security trends, technologies, and threats, making recommendations to improve Aristocrat’s security posture.
Develop and apply product security procedures and technical security requirements, including documentation for developer usage of product security controls.
Support acquisition due diligence for information security risks and support control development for integration.
Manage vulnerabilities and assist with incident response activities as needed.