Lead large-scale information security engineering initiatives and strategic planning for complex security challenges.
Responsibilities
Design, document, and implement complex security solutions.
Develop and manage security policies, standards, procedures, and guidelines.
Integrate application security tools into enterprise vulnerability management systems.
Collaborate with teams to resolve policy, procedure, and compliance requirements.
Provide technical leadership for software upgrades and availability management.
Required Skills
5+ years of Information Security Engineering experience.
5+ years of application security experience.
5+ years of software development or scripting experience.
5+ years of technology management experience.
Experience with Agile and CI/CD technologies including Jira, Kubernetes, and Jenkins.
Knowledge of cloud technologies, specifically GCP and Azure.
Deep understanding of secure application design: authentication, authorization, least privilege, logging, encryption, data masking, data retention, and secure data transmission.
Preferred Skills
Experience with vulnerability management source of record tools like Threadfix, ServiceNow AVR, or Briqqa.
Understanding of modern engineering practices and operating within a product organization.