Software Engineer developing and building IAM systems at Persona, focused on identity verification infrastructure. Collaborating across teams to ensure secure practices in deploying AI tooling.
About the role
- Product Security Risk Manager responsible for evolving risk management capabilities at Red Hat. Collaborating across product management and engineering to drive risk governance and reporting.
Responsibilities
- Own and Evolve the Risk Management Methodology : Develop, own, and manage the central Product Security risk register, establishing it as the single source of truth for tracking and decision-making.
- Assess and Quantify Risk : Partner with technical teams to establish a consistent methodology for assessing and quantifying risk that goes beyond traditional severity scores to incorporate business context such as product impact, revenue, and reputational damage.
- Translate and Articulate Risks : Translate complex technical issues and compliance gaps into clear, quantifiable business impact for non-technical audiences.
- Drive Governance and Coordination : Lead a cross-functional risk governance committee to review and act on top risks.
- Create Tailored Reporting : Design and deliver tailored risk reports, metrics, and dashboards for diverse audiences, including executive leadership, product engineering leaders, legal, and sales organizations.
- Improve and Standardize Processes : Build a structured, repeatable program for risk identification, assessment, and communication across the organization.
- Build Thought Leadership : Develop learning and development materials to foster a culture of risk awareness.
Requirements
- 7+ years of experience in product security, application security, or a technical GRC (Governance, Risk, and Compliance) role.
- Deep understanding of core security concepts, including the Secure Development Lifecycle (SDL), threat modeling, vulnerability management, and risk assessment methodologies.
- Experience building and managing a risk register using dedicated GRC platforms or other tools like Jira.
- A bachelor's degree in a related field or an industry certification like CISSP, CGRC, CRISC or CISM are beneficial but not required.
- Exceptional ability to translate deep technical issues into clear business risks, explaining the "so what" to senior leaders.
- Excellent verbal and written communication skills, with experience presenting to both executive and technical audiences in highly collaborative environments.
- Proven skill in influencing cross-functional teams and senior leadership without direct authority.
- A process-oriented mindset with demonstrated experience building structured programs from ambiguous or ad-hoc processes.
- High attention to detail and the ability to break down large, complex strategies into achievable actions and tasks.
- Strong organizational skills to manage multiple stakeholders and drive complex projects to completion.
- Proactively leverage AI technologies to streamline workflows, simplify complexity, and enhance overall efficiency.
Benefits
- Comprehensive medical, dental, and vision coverage
- Flexible Spending Account - healthcare and dependent care
- Health Savings Account - high deductible medical plan
- Retirement 401(k) with employer match
- Paid time off and holidays
- Paid parental leave plans for all new parents
- Leave benefits including disability, paid family medical leave, and paid military leave
- Additional benefits including employee stock purchase plan, family planning reimbursement, tuition reimbursement, transportation expense account, employee assistance program, and more!
Job title
Job type
Experience level
Salary
Degree requirement
Location requirements
Senior Software Engineer developing IAM systems for identity verification at Persona. Engaging in security - focused engineering to ensure user identity safety and compliance.
Senior Product Security Engineer at Persona focusing on security infrastructure and AI tooling. Drive vulnerability lifecycle and collaborate with engineering teams on secure feature development.
Product Security Engineer working on security measures for identity verification systems. Driving vulnerability responses and enhancing security in product development cycles.
Teamleiter:in IT Perimeter Security Engineering at Axians Switzerland leading a Cyber Security team. Guiding practical engineering and technical project management for client services in a multi - site environment.
Security Officer maintaining safety and compliance at WarHorse Casino. Responsible for incident reporting and guest relations in a dynamic gaming environment.
Technical leader in security architecture for Riachuelo, overseeing security solutions and team activities. Seeking to enhance security measures while fostering teamwork.
Cyber Security Specialist for Riachuelo's Red Team overseeing offensive security projects. Leading cyber threat intelligence and collaborating with internal teams on security improvements.
Senior Security Engineer at PagBank ensuring secure network and application exposure strategies. Leading technical initiatives in firewalls, WAF/CDN, and advanced troubleshooting.
Technology and Cybersecurity Director leading the commercialization of cybersecurity consulting services at Emergent. Bridging technical teams and sales organizations to drive pipeline and revenue growth.