System Security Manager overseeing vulnerability management and compliance for critical systems at Agile5 Technologies. Driving security improvements and collaborating across project teams.
About the role
- Senior Director, Product Security at Salesforce driving security excellence and embedding security practices into product engineering. Leading a team to mitigate risks across software lifecycle.
Responsibilities
- Build, scale, and lead the Product Security Advisors (PSA), ensuring close alignment with the broader Product Security and BISO organization
- Define and drive a forward-looking security advisory strategy that supports product engineering across multiple business units
- Set a clear vision for the PSA team, empowering them to influence architecture, design, deployment, and runtime security decisions
- Establish measurable outcomes and reporting frameworks to track program effectiveness, risk reduction, and overall impact
- Foster a culture of innovation, leveraging automation, agents, and streamlined processes to maximize efficiency and value
- Implement employee success strategies that drive high performance, accountability, and retention within the PSA team
- Serve as a trusted advisor to product and platform leadership, embedding with engineering teams to ensure a security-by-default approach
- Partner with Product BISOs and security teams to curate aligned, risk-based priorities across business units
- Influence product management and engineering to integrate risk remediation and security best practices into feature development and roadmaps
- Hold stakeholders accountable for delivering remediation commitments within agreed timelines
- Lead comprehensive risk assessments across architecture, design, deployment, and runtime phases
- Oversee technical reviews, threat modeling, code/design reviews, and hands-on testing to uncover and mitigate risks
- Analyze diverse risk signals and discovery data to prioritize security activities and inform the product security roadmap
- Guide the PSA team in evaluating trade-offs, recommending optimal solutions that balance security, functionality, and business objectives
- Partner with the BISO organization to align product risk management with regulatory, compliance, and customer obligations
- Collaborate with CSOC, SCCT, and other security teams to incorporate lessons learned from incidents into proactive controls
- Act as a security thought leader, representing Product Security Advisors in executive forums and, as needed, with external customers
- Rapidly adapt to new and emerging high-risk areas, effectively persuading stakeholders to pivot priorities where required
Requirements
- Bachelor's degree in Computer Science, Engineering or related field, or equivalent training, fellowship, or work experience
- Exceptional communication, collaboration, and interpersonal skills
- An attacker's mindset; consider abuse and attack paths
- A passion around improving the security development lifecycle
- Ability to work with data, identify trends and propose comprehensive mitigations
- Experience managing or participating in an information security program
- Threat modeling of security topics across infrastructure security & application security domains
- Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements
- Exceptional writing and presentation skills
- Experience with client side/browser security features like same origin policy, CORS, CSP, shadow DOM, Web Components, web development frameworks etc.
- Experience with software development in one or more languages such as: JavaScript, Java, Python, Ruby, PHP, Go, TypeScript
- Some experience performing penetration testing or familiarity with the process
- 5+ years proven experience in the following areas in a security engineering or research role: Securing products and infrastructure from the OWASP Top 10 and/or CWE Top 25
Benefits
- time off programs
- medical
- dental
- vision
- mental health support
- paid parental leave
- life and disability insurance
- 401(k)
- employee stock purchasing program
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Security Guard responsible for protecting clients and staff at The Providence Center. Involves patrolling facilities, reporting incidents, and maintaining security protocols.
Corporate Security Manager ensuring safety and security of employees and assets at Vodafone. Responsible for implementing security policies and coordinating security personnel in an international environment.
Process & Information Security Manager responsible for IT governance and security at ilem, based in Casablanca. Leading ISO 27001 compliance and improving security practices.
Cyber Security Service Owner for Exposure & Vulnerability Management at ASSA ABLOY. Leading the performance and evolution of exposure management services globally.
Site Security Officer responsible for ensuring security compliance and managing risks. Collaborating in an international context at Saab Underwater Systems in Linköping or Motala.
Internship role developing skills in Information Security at Atlantic Union Bank. Engaging in real assignments and gaining practical work experience with mentoring and training.
Corporate Security Intern at Atlantic Union gaining practical work experience in security and safety management. Involvement with physical security systems and contributing to security strategy.
Information Security Intern participating in security monitoring, threat analysis, and policy development. Engaging in hands - on projects to develop skills in information security operations.
Sr. Product Cybersecurity Engineer responsible for safeguarding GM vehicle platforms against cyber threats. Collaborating with teams to implement and validate intrusion detection capabilities within vehicle architecture.