Platzhalter Bild

Sr. Manager, Product Security en Smarsh

Smarsh · Atlanta, Estados Unidos De América · Hybrid

181.000,00 US$  -  233.000,00 US$

Docker Container Platforms

Kubernetes Container Platforms

AWS

Product Owner

Cloud

Solicitar ahora
Who are we?

Smarsh empowers its customers to manage risk and unleash intelligence in their digital communications. Our growing community of over 6500 organizations in regulated industries counts on Smarsh every day to help them spot compliance, legal or reputational risks in 80+ communication channels before those risks become regulatory fines or headlines.  Relentless innovation has fueled our journey to consistent leadership recognition from analysts like Gartner and Forrester, and our sustained, aggressive growth has landed Smarsh in the annual Inc. 5000 list of fastest-growing American companies since 2008.

Summary

The Manager, Product Security leads a team dedicated to embedding security within products. This role involves partnering with the Product Owner, Technical Product Owner, and Engineering Lead to advocate for and influence security measures within product development. The primary objective is to ensure that products are secure by design and compliant with security standards and regulations.


SummaryThe Manager, Product Security leads a team dedicated to embedding security within products. This role involves partnering with the Product Owner, Technical Product Owner, and Engineering Lead to advocate for and influence security measures within product development. The primary objective is to ensure that products are secure by design and compliant with security standards and regulations.


The above salary range represents Smarsh's good faith and reasonable estimate of the range of possible base compensation at the time of posting. Any applicable bonus programs will be discussed during the recruiting process. 

The salary for this role will be set based on a variety of factors, including but not limited to, internal equity, experience, education, location, specialty and training. 

Local cost of living assessments are done for each new hire at the time of offer.


How will you contribute?
  • Risk Management: Conduct comprehensive threat modelling to identify potential threats and vulnerabilities. Perform detailed risk assessments to evaluate the impact and likelihood of risks.
  • Security by Design: Develop and implement secure design principles and practices. Ensure secure coding practices are followed by the development teams.
  • Vulnerability Management: Lead regular security testing, including static and dynamic analysis and penetration testing. Evaluate and prioritize vulnerability fixes based on risk and impact. Identify and eliminate false positives to streamline remediation efforts.
  • Compliance and Regulatory Adherence: Ensure products comply with relevant security standards and regulations. Maintain and update documentation and evidence of compliance. Support internal and external audit processes for the product.
  • Incident Response: Develop and maintain product-specific incident response plans. Provide expert knowledge and support to the SOC (Security Operations Center) for effective incident management.
  • Continuous Improvement: Stay updated with the latest security threats, technologies, and best practices. Continuously improve security practices and processes within the product development lifecycle.


    • What will you bring?
  • Education: A degree in Computer Science, Cybersecurity, Information Technology, or a related field.
  • Certifications: Relevant cybersecurity certifications such as CISSP, CISM, CEH, or equivalent preferred.
  • Experience in Cybersecurity: 10-15 years of experience in cybersecurity or related fields.
  • Product Security Experience: At least 5 years of specific experience in product security, ideally in FinTech related roles.
  • Leadership: Proven leadership skills with a minimum of 3-5 years in a managerial role, overseeing cybersecurity teams or projects.
  • Technical Skills: In-depth knowledge of cybersecurity principles, secure coding, vulnerability management and risk assessment. Proficiency in modern cloud technologies (AWS, Azure, GCP), containerization (Docker), and orchestration (Kubernetes). Strong understanding of serverless computing, API security, OS hardening, SDLC and network security.
  • Analytical Skills: Strong ability to analyze and mitigate security risks and vulnerabilities.
  • Collaboration: Effective collaboration skills to work with cross-functional teams.
  • Continuous Learning: Commitment to staying updated with the latest security trends and technologies.


    • About our culture

    Smarsh hires lifelong learners with a passion for innovating with purpose, humility and humor. Collaboration is at the heart of everything we do. We work closely with the most popular communications platforms and the world’s leading cloud infrastructure platforms. We use the latest in AI/ML technology to help our customers break new ground at scale. We are a global organization that values diversity, and we believe that providing opportunities for everyone to be their authentic self is key to our success. Smarsh leadership, culture, and commitment to developing our people have all garnered Comparably.com Best Places to Work Awards. Come join us and find out what the best work of your career looks like.
    Solicitar ahora

    Otros empleos

    Firmenlogo

    Governance, Risk & Compliance (GRC) Engineer

    Smarsh · New York, Estados Unidos de América

    Firmenlogo

    Homeoffice Strategic Account Executive, Productivity

    Axon · Tallahassee, Estados Unidos de América

    Firmenlogo

    Strategic Account Executive, Productivity

    Axon · Atlanta, Estados Unidos de América