Lead Product Security Engineer

Responsibilities:

• Drive security roadmap for SSDLC adoption across product portfolio, implementing security practices in alignment with DevSecOps principles
• Establish guidelines and architectural principles based on industry best practices for both cloud-native and on-premise solutions
• Partner with Engineering, DevOps and SRE and collaborate on cross functional initiatives
• Propose and drive security initiatives aligned with business goals, focusing on cloud technologies
• Provide technical guidance to product security engineers and security champions

In order to be considered for this role, you must have:

• 6+ years of progressive experience in information security including technical leadership roles
• Significant experience with secure software development lifecycle, security testing, vulnerability management
• Experience with cloud technologies (AWS, Azure), security testing and automation (SAST, DAST, SCA)
• Deep understanding of DevSecOps principles and agile development
• Knowledge of secure architecture and design principles, industry standards (NIST SSDF, OWASP) and security best practices
• Ability to formulate technical concepts, propose security solutions and communicate effectively to both technical staff and non-technical stakeholders.
• Following is considered a plus:
  • Recognized industry certifications (CISSP, CSSLP, CISM ..)
  • Experience with governance and security certifications (SOC2, ISO27001, FIPS)
  • Bsc/Msc degrees or equivalent formal education in cybersecurity or related fields