Technical Director - Product Security - DevSecOps

November 19

Apply Now

Receive Emails with Similar Jobs

FICO

WebsiteLinkedInAll Job Openings

Predictive Analytics • Decision Management Tools and Applications • Scores • Consultancy • B2B Enterprise Software

1001 - 5000

Description

• As a hands-on Technical Director, you will leverage your expertise with modern CI/CD systems to help establish the secure foundations for a new product development DevOps pipeline. • Leading the Product Security’s Engineering Engagement team, you will embed with software development teams to accelerate their focus on addressing security challenges and technical debt. • You will collaborate closely with security engineers, architects, and software engineers to identify necessary Security architecture and design requirements. • You will define and implement secure-by-default infrastructure and policy-as-code, create onboarding guidance, deploy automated security posture validation, and participate in threat modeling exercises. • You will have the opportunity to build a team and provide hands-on technical leadership as you grow the team.

Requirements

• Experience Managing and leading a team of Security or Software Engineers. • Strong understanding and hands-on experience building CI/CD ecosystems to meet the demands of agile and secure development. • Strong knowledge of programming, architecture, CI/CD, and automation. • Solid experience with AWS API, EKS, and Terraform. • Extensive architectural understanding of cloud security, Kubernetes, cloud-native computing, and microservices. • Demonstrated ability to evaluate complex projects and clearly articulate secure design requirements, applying a “security mindset” and best-practices quality-first approach. • Direct experience standing up and securely administering instances of ArgoCD, Crossplane, Akuity, Upbound Spaces, and Solo.io strongly preferred. • Developer-level experience with Java and Golang strongly preferred. • Direct experience standing up and securely administering instances of Artifactory, Backstage, Buf, and MongoDB preferred. • Experience in the development of and implementing cyber security initiatives including but not limited to policies, strategic projects, activities resulting from internal or external audits preferred. • Experience working within one or more compliance frameworks (PCI 4, SOC 2, ISO 27001) is a plus. • Good understanding of cyber security risk methodologies, trends, and threats to sensitive data. • Knowledge of Security Tools (DAST, SAST, SCA, IAST, IaC, etc.) is a plus. • Experience leading or participating in threat modeling, penetration testing, and security reviews is a plus. • Bachelor/Master's degree in computer science or related discipline, or relevant experience in software design, development, testing, and deployment. • Professional certifications including: CISSP, CISA, CISM, CCSK, CCSP, CEH, C|CISO or related GIAC is a plus.

Benefits

• An inclusive culture strongly reflecting our core values: Act Like an Owner, Delight Our Customers and Earn the Respect of Others. • The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. • Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. • An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie.