Our client, a leading Enterprise SaaS company, is looking for an exceptional security leader to establish and lead a general security team responsible for product and infrastructure security.
Experience
- Minimum of 7 years of experience in product security and application security.
- Hands-on experience designing and deploying security controls across all security domains, such as access management, data protection, vulnerability management, incident response and management, application security, network security, and preventive, detective, and offensive security solutions.
- Deep understanding of security principles, techniques, and technologies such as OWASP Top 10, SANS Top 25, encryption, identity and access management, network security, and cloud security.
- Familiarity with compliance frameworks and standards, such as ISO 27001, SOC 2, GDPR, and CCPA.
- An understanding of Application Security threats and countermeasures
- Practical knowledge of security technologies, especially those applying to SaaS Web applications and wider business solutions, including Firewalls, IDS/IPS, Identity and access management, SIEM, Data Loss Protection, BCP, and Cloud Security
- Bachelor's or Master's in Computer Science, Information Security, or a related field.
- Relevant security certifications (e.g., CISSP, OSCP, CEH) are a plus.
Role responsibilities
- Lead the company's development and implementation of a comprehensive product security strategy.
- As a hands-on leader, manage and mentor a team of security engineers and analysts, providing guidance and direction for their professional growth.
- Identify, develop, implement, and maintain security programs and processes across product development and production environments.
- Define strategic direction, set objectives, and structure and resource the organization and the work in a way that improves the team’s impact and provides a paved path to a leadership position among SaaS providers, including application security, infr