Application Security Specialist focused on securing applications in a Swiss critical infrastructure company. Involves risk assessment, security enhancement, and collaboration with cyber security teams.
About the role
- Security Director overseeing cybersecurity strategies and compliance within business units at Salesforce. Lead initiatives to align security with organizational goals and mitigate risks.
Responsibilities
- Partner with business units to integrate cybersecurity strategies into business processes, ensuring alignment with organizational objectives and risk tolerance.
- Conduct risk assessments, identify control gaps, and develop mitigation strategies in alignment with industry standards.
- Provide technical guidance on secure development patterns.
- Refine, and enforce security policies, standards, and procedures, which are applicable to the enterprise environment, ensuring compliance with regulations and emerging risks.
- Lead the coordination of security remediation efforts for business units, through a risk register which helps prioritize all work (bugs, transformational initiatives, compliance findings, etc)
- Build and maintain strong relationships with business leaders, IT teams, and external partners to foster a culture of security awareness and collaboration.
- Develop and deliver tailored security awareness programs for business units, promoting best practices in areas such as phishing prevention and secure data handling, when needed.
- Develop and present key performance indicators (KPIs) and key risk indicators (KRIs) to senior leadership, providing insights into the organization’s security posture.
Requirements
- Bachelor’s degree in Computer Science, Information Security, or a related field;
- 10+ years in cybersecurity, with at least 5 years in a senior-level role focusing on business-aligned security strategy.
- Proven experience as an individual contributor in a high-impact, director-level role within a complex enterprise environment.
- Deep technical expertise in understanding security principles across the corresponding infrastructure, including cloud security (AWS, Azure, GCP), network security, encryption protocols (e.g., TLS, AES), and identity and access management (IAM) solutions.
- Proven understanding of security and compliance frameworks (e.g. NIST CSF, ISO 270001/2, etc)
- Proficiency with security tools such as SIEM (e.g., Splunk, QRadar), EDR (e.g., CrowdStrike, SentinelOne), and vulnerability management platforms (e.g., Qualys, Tenable).
- Strong understanding of secure software development lifecycle (SDLC) and DevSecOps practices.
- Experience with zero trust architecture and multi-factor authentication (MFA) implementations.
- Exceptional ability to translate complex technical concepts into business-friendly language for non-technical stakeholders.
- Strong project management skills, with experience leading cross-functional initiatives.
- Proven track record of building trusted relationships with C-suite executives, business unit leaders, and technical teams.
- Proven experience influencing stakeholders to invest in strategic security initiatives to buy down risk.
- Excellent communication and presentation skills, with the ability to influence and drive consensus across diverse groups.
- Deep understanding of current cybersecurity trends, threat landscapes, and regulatory requirements specific to the technology industry.
Benefits
- time off programs
- medical
- dental
- vision
- mental health support
- paid parental leave
- life and disability insurance
- 401(k)
- employee stock purchasing program
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Manager in Software Engineering focusing on Cyber Security. Leading security architecture and application security for Caterpillar while mentoring teams.
Compliance Program Manager responsible for day - to - day execution of compliance programs at healthcare data company. Managing SOC 2, ISO 27001, and HITRUST compliance operations with cross - functional coordination.
Loss Prevention Store Security Agent at TJX Canada ensuring safety and security in stores. Involving theft prevention, surveillance, and collaboration with investigators in retail settings.
Working Student in AI/ML Data Collection focusing on 6G security measures at Nokia's research department. Gaining practical experience while contributing to innovative projects in a scientific environment.
Chief Information Security Officer responsible for leading information security strategy in a fintech company. Ensuring compliance and overseeing security risk management in a hybrid work environment.
Security Engineering Lead at fintech startup focusing on helping small businesses thrive. Collaborate with engineering teams to enhance security and integrate into product delivery.
Senior Director of Cybersecurity Engineering at BNY responsible for security strategy, architecture, and compliance in a global financial services environment.
IT Security Specialist protecting IT systems and data for logistics company in Port Elizabeth. Collaborating with IT teams to implement security measures and manage risks.
Senior Cyber Security Consultant focusing on product compliance in industries like automotive and medical technology. Engaging in diverse roles such as engineer, coach, or moderator.