Director, Information Security and Compliance - ServiceMax Pleasanton, California, United States Bookmark Share Print 102 0 1

Listing Description

What You Will Do:



  • Manage strategic business partnerships and relationships through Technical, Financial, Contractual and Relationship management. Plan and manage budgets related to the scope of the team.

  • Communicate effectively both within the immediate team and with ServiceMax leadership.

  • Ensure that the team receives consistent messages and has a clear understanding of business direction, strategy, and results.

  • Build a world class product security team to consistently deliver world class advisory services and tooling to help build secure and complex cloud products.

  • Build and manage a world-class cyber security organization to ensure it keeps pace with a rapidly evolving and demanding regulatory environment, a highly persistent and diverse threat landscape and robust product roadmaps.

  • Develop and maintain processes, policies, and technical controls in support of certifications programs and continual compliance with international standards and international privacy regulations.

  • Identify and ensure resolution of possible technical implications of each release.

  • Direct team in maintaining a backlog of security-related tools that will improve the maintainability and security of our code and the pace of development.

  • Prepare reports and metrics at appropriate levels of confidentiality for stakeholders to view.

  • Respond promptly and in detail to customer-sponsored penetration tests.

  • Collaborate with internal and external stakeholders, such as ServiceMax leadership, legal, HR, and outside agencies to manage security vulnerabilities, threats, and risk.


What You Bring to ServiceMax:



  • Master’s degree, or foreign degree equivalent, in Computer Engineering, STEM (Science, Technology, Engineering, or Mathematics), or a related field and 10 years of related experience.


Desired Skills:



  • 10 years of experience in Enterprise Information and Product Cyber security;

  • 8 years of experience in Secure Development Lifecycle and CI/CD automation tools, including TF, Git, and Jenkins;

  • 8 years of experience with regulatory and standards-based compliance related to cloud and mobile applications, and data confidentiality;

  • 9 years of experience with the application of risk identification and evaluation techniques;

  • 10 years of experience with Cyber Security;

  • 5 years of experience with multiple (full-stack) related engineering functions;

  • 8 years of experience with auditing and risk assessments;

  • 9 years of experience in application security consulting, design/architecture and assurance;

  • 8 years of experience with DevOps and Agile development practices;

  • 9 years of experience in large enterprise environments;

  • 4 years of experience managing the following enterprise IT security technologies and functions: DLP and Firewalls;

  • 4 years of experience managing the following enterprise IT security technology and function: CASB;

  • 10 years of experience with web-based applications and web services-based applications;

  • 5 years of experience driving work streams in the information security domain, such as security architecture and strategy (Integrated Risk Management), identity and access management, and data leakage prevention; and

  • 5 years of experience interpreting and implementing the following security industry standards as they relate to building an information security management program: ISO 27001/27002, SOC 1 & 2, NIST, PCI, and FedRAMP.


Employer will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a background investigation. 


Email resume to careers@servicemax.com and reference job code DISC001.


Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided

 

  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Not Provided



About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765