Director, Product Security-Dow Jones - job id 34058


Your Way To Work™

Director, Product Security-Dow Jones

F/T Employee

Midtown NYC, 5th Ave



How to Apply

logo

Jessica Ohmer


logo

(646) 876-9549


logo

(212) 616-4800 ext-570




A F/T position at an American multinational mass media corporation.


Pay Options: Full Time Employee

Contact Jessica Ohmer call (646)876-9549 or email jessica@sans.com with the Job Code JO34058

Location: Midtown.

Skills required for the position: CYBER SECURITY, CLOUD, BURP, FORTIFY, Mobile, JAVA, RUBY, RISK MANAGEMENT.


Detailed Info:

  • Responsible for the design, development and strategy for the security of digital products hosted in a public cloud computing environment.

  • The Director will contribute expertise, embrace emerging trends and provide overall guidance on security best practices across all business and technology groups.

  • The successful candidate will possess excellent interpersonal and communication skills required to partner with other leaders across the global business to identify opportunities and risks.

  • The position will require the ability to multitask and work independently, as well as work collaboratively with teams, some of which may be geographically distributed.

  • Help build, maintain and execute a strategy to secure our customer-facing products.

  • Develop security standards and policies to ensure products are built to meet those needs.

  • Support product engineering teams to address security issues and ensure sound trade-offs.

  • Functional leadership to lead and conduct code scanning (SAST/DAST/RAST/SCA), threat modeling, penetration testing, security in CI/CD for applications (web/mobile).

  • Championing a DevOps security model so that security is automated and elastic across all platforms.

  • Accountable for developing & implementing manual and automated security tests.

  • Defining and implementing Secure Software Development Lifecycle practices throughout planning and delivery, to mitigate risks.


Development/Computing Environment:

  • BA/BS degree in Technology, Computer Science/Engineering, Cybersecurity, a related field or experience.

  • Minimum 5+ years of demonstrated experience with implementing product security in Cloud platforms such as Amazon Web Services (AWS), Google Cloud (GCP).

  • Working knowledge of Burp, Fortify, Checkmarx or similar static code analyzers.

  • Extensive knowledge of the mobile and digital space. Expertise on emerging digital security/authentication trends.

  • Experience with programming languages such as Java, Ruby, C# and scripting languages such as Python.

  • Dev tools experience (Github, Terraform, Jenkins, etc.).

  • Advanced expertise in Cybersecurity organization practices, operations, risk management processes, principles, architectural requirements, engineering and threats and vulnerabilities, including incident response methodologies, tactics and strategy to protect, detect, respond and recover from attacks.

  • Recognized expertise in Agile and implementation of security in dev-ops, CI/CD frameworks.

  • Excellent communication and presentation skills.

  • Ability to effectively communicate, both orally and in writing, through all levels of the organization.


The position offers competitive compensation package.


Job Id: 34058