We are looking for a highly talented senior manager to lead our R&D Product Security domain.
As part of this role, you will lead all the R&D security strategies, you will plan, build, initiate new risk reduction programs, work with cross interfaces from all our organization, nurture and lead the R&D security community, work closely with High MGMT and manage holistic security plans from vary pillars such: application security, DevSecOps and Cloud Security.
This is a unique opportunity to lead a key domain in a Cyber Security leader company with high attention and projector bottom to up / up to bottom cross the organization.
Lead the security core team in R&D
Nurture, build, and mentor the security staff and culture in R&D (building the force - security champions training, education to more roles, recruitments of experienced security members, lead our R&D security community)
Be responsible for our SSDLC processes-
Following industry standards such OWASP, NIST, FIPS, SANS, CIS, and more
Research, POC, adoption of relevant security automated tools in the pipelines (e.g. SAST, SCA, DAST, secret leakage prevention)
Cloud Security - Escort the R&D groups to have the right architecture, CCM CAIQ maturity & readiness, and security of our cloud accounts (AWS, Azure, GCP)
Be part / orchestrate product security possible incidnets / asses the risks / suggest mitigations / track fixes / prevention approach and learning.
Monitor and create new KPIs ongoing to control R&D security state / direct the R&D to the right direction.
Push and nurture DevSecOps spirit, work closely with our DevOps units as their PM to implement security as an integral part of the dev work, shift left & developer first approach
Plan cross proactive security plans:
Have clear maintained backlog & goals driven risks
Being an enabler to R&D products team to understand the risks, and combine them in their plans Vs. other commitments
Lead the security steering committee and update management and audit committee (our board) on security strategy, progress, risks and goals.
Leading the security review for due diligence processes from Day 1.
Close interfaces with: Global R&D groups, PM Security, IT Security, Cloud Engineering, Legal, Research & Red-Team units.
Requirements: 7+ years of experience as R&D manager who grew up in R&D roles.
High advantage of experience in cyber security domains
Highest level of responsibility, confidentiality, and risk evaluation
See the big picture, differentiate risks, and know to harness based on risks
Experience with leading projects and initiatives involving both managing resources and collaborating with other teams
Conflict eliminator, flexible, matrix leading
Lead for decisions in a stress mode / with lack, a small amount of information/risk MGMT all the time.
המשרה מיועדת לנשים ולגברים כאחד.