We are partnered with a nationwide organization that provides facility maintenance services for commercial, industrial, residential, and companies. The client is looking to bring on a Security Engineering Manager to lead efforts to ensure the security, safety, and reliability of the client's product platform. Reporting to the Product & Engineering Leader, this role involves developing and executing comprehensive strategies for application security, managing security resources and practices, and collaborating with engineering teams to integrate security into product development.
Key Responsibilities:
- Act as a strategic leader in shaping and implementing the application security strategy, ensuring alignment with the product security roadmap and organizational goals.
- Oversee the security of our platforms and assets, focusing on secure design and implementation across all products.
- Develop and manage security resources and practices, ensuring adherence to security best practices and effective utilization of security tools.
- Collaborate with stakeholders to align security initiatives with business objectives and ensure that security concerns are integrated into the product development lifecycle.
- Define and track key performance indicators (KPIs) and metrics for security engineering to measure and improve the effectiveness of security practices.
- Assess and manage the attack surface of our applications and platforms, implementing strategies to mitigate risks.
- Foster collaboration within the engineering team to integrate security seamlessly into the development process, from design to deployment.
- Lead efforts to ensure secure design principles are applied and security controls are implemented throughout the CI/CD pipeline.
Requirements:
- Extensive experience in security engineering with a focus on infrastructure and web application security.
- Proficiency in encryption, penetration/vulnerability tools, and information security policies.
- Strong understanding of privacy rules and regulations and their application to security practices.
- Proven track record of managing security initiatives and leading distributed teams in a fast-paced environment.
- Relevant IT/cybersecurity certifications (e.g., CISSP, CISM, GSLC, OSCE) are highly desirable.
- Hands-on experience with AWS, Kubernetes, and CI/CD pipelines.
- Ability to influence and guide teams and stakeholders towards effective security solutions and practices.
Additional Benefits:
- Health, dental, and vision medical coverage starting first day on the job.
- Paid Primary and Secondary Caregiver leave.
- Paid time off to volunteer.
- Employee Assistance Program.
If you or someone you know is interested, please apply directly!
**Location preference is to work hybrid out of the Cincinnati office location 2 days a week; candidates who are willing to accommodate this will be prioritized over fully remote candidates. Relocation assistance is available.