Senior Product Security Specialist

About The Position

Requirements

• Superior Knowledge of Vulnerability Management processes for Infrastructure, Cloud-Native, and Product alike.
• Foundational knowledge in linux, windows, and containerized systems.
• Experience analyzing, triaging, and remediating common information security issues.
• Proficiency with Vulnerability Management Tools (e.g. Tenable.io, Tenable Security Center, Rapid7 InsightVM).
• Ability to be an Active Listener and employ various levels of listening as required by the needs of those you coach.
• Technology skills and the willingness to learn new topics quickly.
• Problem-solving, presentation, communication, and interpersonal skills.
• Ability to think strategically, delivering services to meet stakeholders' demands on a timely basis.
• Understanding of common attacker tactics, tools, and techniques.
• Ability to build trusted relationships with key stakeholders.
• Persistence, self-motivation and willingness to work under pressure.
• Proven ability to work in cross-functional teams.
• Excellent problem-solving, investigative, and written and verbal communication skills.
• Ability to speak and write in English fluently.

Nice To Haves

• Bachelor's degree or equivalent experience.
• 3-5 years of experience working in security area with relevant realm of responsibilities.
• Knowledge of security frameworks and best practices.
• Knowledge of development security operations principles.
• Established and matured cross-company processes around vulnerability management including operating models, maturity models, Service Level Agreement (SLA)/Service Level Objectives (SLOs), discovery, managing and reporting processes, roles/responsibilities, etc.
• Coordinated resolution of cross-company issues that arose from vulnerabilities, having worked with internal and industry stakeholders to comprehensively remediate security risk.
• Security Certifications like CISSP, CISM, CCSP, Security+, etc. are an asset.
• Previous participation in security assessments in a regulated environment are a plus.

Responsibilities

• Develop, implement, maintain, and socialize the strategic vision pertaining to your area e.g., testing, validation, post-production security operations.
• Proxy issues between Product and Regional Operations teams with additional enrichment, actionable guidance, and higher support.
• Provide expertise in cross-functional team initiatives and process improvement projects.
• Play a key role in operational reporting & metrics capability, ensuring all products and regions within Sovereign Cloud can adequately be measured towards compliance to the standard set for Enterprise Vulnerability Management.
• Strengthen relationships between security and other functional teams; act as a security champion to help build a culture that sees security as an enabler.
• Establish/participate in learning circles with other product(s)/application(s)/service(s) security professionals across cross line of businesses to share best practices and lessons learned.

Benefits

• Flexible working models.
• Health and well-being programs.
• Diversity and inclusion initiatives.
• Learning and development opportunities.
• Recognition for individual contributions.