Regional Security Manager responsible for security operations at EMEA Data Centers. Collaborating with cross - functional teams for compliance and incident management.
About the role
- Principal Engineer Product Security supporting Engineering by solving technical problems and building secure services. Collaborating with teams to drive product security and improve security posture.
Responsibilities
- As our Principal Engineer Product Security, you’ll support the Engineering team by solving challenging technical problems for an ambitious product and enabling teams to "shift left" to build secure services on multi-cloud infrastructure.
- Formulate, evangelise, and drive adoption of the product security strategy.
- Assess, advise on, and increase the security maturity posture.
- Create a standardised security architecture and operational best practices.
- Help track and drive remediation of security and technology risks.
- Educate product teams on risk assessments, threat modelling, and building secure api-first applications.
- Review requirements and designs to help product teams address shortcomings.
- Embed security tooling into the development process.
- Contribute to the review of external penetration tests and help teams prioritise fixes.
- Collaborate with product teams to improve overall security and resolve specific issues.
- Facilitate or lead customer conversations regarding product security.
- Triage and investigate new attack vectors to determine risk mitigation.
- Drive security and quality initiatives across the organization and support certification audits.
- Collaborate with Product Management, Principal Engineers, and legal/compliance teams.
- Identify skills gaps and facilitate knowledge sharing across the organization.
Requirements
- A strong technical background and 5+ years of proven track record in hands-on Product Security
- 2+ years of experience improving Product Security in a leadership role
- Experience with customer-facing security roles and influencing roadmaps in matrix organizations
- Experience in a scale-up environment with ambitious and competing priorities
- Expertise in formulating, elaborating, and clarifying requirements or priorities
- Experience with Secure Architecture design reviews and Threat Modeling
- Experience infusing security into various levels of the SDLC
- Experience with Static Analysis and Secure Code Review implementations
- Sound knowledge of Linux systems, Kubernetes, Terraform, Vault, API, and web application security
- Practical experience in DevSecOps and proficiency in at least one scripting language like JavaScript or Go
- Project management experience for projects affecting multiple teams
- Experience working within an Agile environment with a strong customer focus
- Experience setting up and running trainings or onboardings
- Clear written and verbal communication in fluent English.
Benefits
- Comprehensive health benefits for you and your dependents, including access to OpenUp for personalized mental health support
- Learning and development opportunities including an annual learning budget, access to self-paced learning platforms and language training, personalized coaching, mentorship, and leadership programs
- Family Leave Plus gives you additional fully paid weeks of parental leave on top of government-provided leave, so you can spend more time with your new addition
- Our equity participation program allows you to share in our success
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Chargé.e d’Etudes et Travaux en systèmes électromécaniques de sécurité at RATP Infrastructures. Responsible for ensuring technical compliance and supervising project activities on - site.
Technical lead for Ford’s EV charging and energy ecosystem. Partner with product teams to design security controls and develop requirements.
Senior Infrastructure Security Engineer handling cloud security and infrastructure lifecycle for Zocks, a fintech startup. Responsible for security initiatives and compliance readiness in a rapidly growing team.
Data Center Security Officer ensuring safety and security for data center clients through patrols and monitoring. Conducting reports and maintaining client security requirements.
Cybersecurity Specialist overseeing the protection of clients' technology systems and networks. Implementing cybersecurity policies and conducting evaluations against cyber threats in a supportive working environment.
Providing security incident management for industrial environments at Telefónica Tech. Utilizing various monitoring platforms to enhance security posture.
Senior Cybersecurity Incident Responder at ZEISS handling technical incident response activities. Collaborating with cyber defense teams to ensure effective incident management and resolution.
Information Security Manager responsible for steering InfoSec programs globally at ZEISS. Leading cross - functional initiatives and risk management strategies in a high - tech environment.
Endpoint Security Engineer at Booz Allen designing and operationalizing data protection controls. Safeguarding sensitive data across enterprise systems and leading technical operations.