Responsibilities:
- Lead and support Engineering teams, customers, and the Cyber Security organization in managing and driving critical programs.
- Provide strategic leadership to the IT Infrastructure and Security teams, ensuring effective oversight of all cybersecurity operations.
- Collaborate with other business leaders to integrate cybersecurity within the broader business strategy.
- Act as the representative for the cybersecurity department in engagements with regulatory bodies, auditors, and external stakeholders.
- Regularly report to leadership on the performance and status of the cybersecurity department.
Knowledge, Skills, and Abilities:
- Proven experience in managing programs involving cross-functional teams and engaging both internal and external stakeholders.
- Exceptional communication (both written and verbal) and leadership skills.
- Strong understanding of 'security by design' principles and security architecture concepts.
- In-depth knowledge of current and emerging security threats and vulnerability exploitation techniques.
- Proficiency with cybersecurity frameworks such as ISA/IEC 62443, NIST 800-53, and NIST RMF.
- Familiarity with development methodologies such as Agile, SAFe, and SCRUM.
- Understanding of DevSecOps practices.
- Experience in conducting secure product reviews using both automated tools (e.g., SAST, DAST, SCA) and manual methods (e.g., Penetration Testing).
- Relevant certifications in security and privacy, such as CSSLP or CISSP, demonstrating advanced practical knowledge.
Education, Training, and Experience:
- BS or MS in Computer Science or a related field, along with relevant industry certifications.
- Over 10 years of experience securing Cloud, Mobile, or Client/Server software, including embedded systems.
- More than 10 years of experience in technology and cybersecurity.
- At least 6 years of leadership experience.