V

Senior Principal Product Security Engineer

Vertex
Full-time
Remote

Job Description:

The Senior Principle Product Security plays a pivotal role as a partner defining and implementing Vertex’s Product Security strategy, partnering closely with product development, InfoSec, IT, legal and other organizations to drive critical cyber risk programs from start to finish. You believe in making Product Security easy, through reducing issues up front through Secure-by-Design principles, and continuous management of Product Security risk for Vertex’s products and services.

  • Develop and execute security roadmaps and recommendations to drive enhancements of Product Security architecture, governance, and standards throughout the Vertex Ecosystem.
  • Drive the execution of security features within Vertex’s product offerings.
  • Serve as the primary security reviewer within Vertex’s Software Development Lifecycle
  • You will contribute to Vertex’s Product Security Security-by-Design strategy including implementation and operationalization.
  • In this role, you will be responsible for identifying the resolution to security issues in a broad range of products.
  • Identify, incorporate, and articulate Product Security best practices such as DevSecOps, zero trust design, and cloud incident response.
  • Recommend and validate Security controls and improvements across our software and infrastructure stack.
  • Foster relationships with key internal stakeholders such as Engineering, IT, Legal and InfoSec
  • Produce data-based reports on technology risk for senior management (KPI’s).
  • Provide technical guidance to product and engineering teams working on security and privacy-relevant technologies.
  • Evaluate the security of new products, conduct security and code reviews, and support vulnerability management.

KNOWLEDGE, SKILLS AND ABILITIES:

Minimum qualifications

  • 10 years of experience applying security controls to on prem and cloud-based technologies at the architect level.
  • 10  years of experience implementing cyber risk practices for Product Security frameworks using CIS Benchmarks, Cloud Security Alliance, OWASP, NIST and ISO
  • In depth understanding of security principles, methodologies, technologies and frameworks.

EDUCATION AND TRAINING:

  • Master’s Degree or Bachelor’s Degree in Information Security, Computer Science or equivalent.
  • 10  plus years of experience in the security domain
  • Or equivalent combination of education and/or experience

Apply now
Share this job
Twitter Facebook Linkedin Email