Booz Allen HamiltonRemote
Product Security Senior Manager
United States of America
Full Time
1 hour ago
$143,000 - $266,000 USD
H1B Sponsor Likely
Key skills
Product SecurityApplication SecuritySoftware SecurityEmbedded Systems SecurityHardware SecuritySDLC ManagementVulnerability ManagementApplication Security TechnologiesCode Scanning ToolsCI/CD PipelinesOWASP Top 10Security Risk ManagementSecurity ComplianceAnti-tampering ProtectionsReverse EngineeringPenetration TestingSecurity FrameworksNISTInfluenceSDLCCI/CDSalesOWASP
About this role
Booz Allen Hamilton is seeking a Product Security Senior Manager to grow and develop their Product Security practice within the Commercial Team. This role involves defining the team's direction, collaborating with stakeholders to drive the sales process, and leading teams of Product Security Engineers to enhance the security of applications and products.
Responsibilities:
- Grow and develop Booz Allen’s Product Security practice, part of the Commercial Team
- Define the Product Security team’s direction, standards, and requirements for services and solutions sold to Booz Allen Commercial customers
- Collaborate with key stakeholders from the market and sales teams to help drive the sales process
- Conduct interviews with business and technology leaders, key client stakeholders, supporting engagement managers, developing strategies, and presenting findings
- Educate and influence client software and product engineering teams on cybersecurity best practices
- Assist clients in establishing Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) relevant to their product and market goals around cybersecurity assurance
- Work proactively with leaders across all levels to design, implement, and support solutions that ensure clients have a secure-by-design and best practice approach across the full product development life cycle
- Lead, hire, and inspire teams of Product Security Engineers and Architects to perform security posture assessments of development and operational systems, provide recommendations and remediation plans, and implement tools, technologies, and processes that enhance the security of applications and products
Requirements:
- 8+ years of experience leading teams in a Product, Application, or Software Security field
- 5+ years of experience with application development and developing, architecting, and implementing software security solutions
- 3+ years of experience working on securing embedded systems, physical products, or hardware environments
- Experience with managing across SDLC, including vulnerability management considerations and modern development tools and frameworks
- Experience with the integration of common products and application security technologies and solutions into production environments
- Experience developing and securing software with code scanning tools and CI/CD pipelines
- Knowledge of OWASP Top 10 Vulnerabilities and prevention techniques and technology, security, risk, and compliance best practices
- Ability to travel up to 50% of the time
- Bachelor's degree
- Experience designing and implementing anti-tampering protections for products
- Knowledge of reverse engineering and penetration testing techniques
- Knowledge of common security frameworks, including OWASP and NIST
- Ability to create collaborative relationships with colleagues and influence without authority