Group Product Security Manager at Computer Futures (Amsterdam, Netherlands) (allows remote)
Add To Bookmarks
Company: Location: Amsterdam, Netherlands
Type: Full Time
Created: 2021-10-10 05:01:00
Apply Here
Group Product Security Manager On behalf of our client, a global leading provider of professionally monitored security solutions, I am currently exclusively seeking a Product Security Manager with a technical background.Reporting to the CISO, The Product Security Manager will be a key member of the Information Security team with a critical responsibility to develop their Product Security Offering Globally.Key ResponsibilitiesWorking within a global organisation you will need to successfully manage and support your team in identifying, escalating and resolving critical product security issues - in all phases of the development process.Your actions and the work of your team will be vital in enabling secure business by providing the right advise, at the right time across a broad area of 'customer-facing' technologies and processes, enabling high-quality decisions to be made.Main Responsibilities
- Management of the Group Product Security Team and regular engagement with Senior Stakeholders; up to C-suite level
- Adoption of frameworks and best practices
- Proactive analysis and threat modelling of their products and services (software and hardware threat vectors, threat modelling, attack surface analysis, penetration testing, and vulnerability assessments)
- Establish a strong partnership with the development and engineering teams; in order to ensure that Security is fully embedded into software/hardware development cycles
- Develop and maintain a Product Security Programme, including tool and system selection, which supports secure Product Development
- Develop, and build on, robust processes to scope, analyse and remediate issues raised through vulnerability Scanning and penetration testing
- Production of effective Application Security reporting and metrics
- Education of teams globally in Application Security threats and secured design and development
- Support cross-working initiatives which support the delivery of the wider Group InfoSec Programme
- A minimum of 8 years of experience in the Products and Services Sector - working with analysis and design of secure solutions
- Significant line management experience of technical specialists
- Demonstrable expertise with tools including: Black Duck, Burp, ZAP, BeEF, and Metasploit
- Demonstrable expertise in development methodologies and languages
- Written and Spoken Fluency in English
- Relevant security certification (e.g. GSEC, CISSP, MSc in Information Security)
- Experience with IoT; particularly smart home technologies, and the business models behind them