Technical Program Manager Information Security III

Job Title : Technical ProgramManager Information Security III

Location : Santa Clara CAonsite

Mandatory Skills : Data Testing & PythonSkills

MustHave Skills

Skill 1 Should have goodunderstanding of DevSecOps concepts / principles and cloud nativeservices to enable secure development and deployment ofapplications in the Cloud

Skill 2 Work with InformationSecurity and Information Technology teams to build & maintaincontrols to manage varied risks including application and cyberrisks

Skill 3 Familiarity with the tools for varioussecurity activities : Static Code Analysis DAST Penetration TestingIntrusion Detection / Prevention etc

Skill 4 Experienceworking in semiconductor industry is a plus

Good To have Skills

Skill 1Certification in any security area is a plus

Mandatory ifApplicable

Domain Experience (Ifany ) Information Security III

Key Responsibilities

Partner withvarious stake holder groups to promote and build a culture ofsecurity and ensure products are designed and builtsecurely.

Partner with Product Engineering Legal andInformation Security teams to ensure security & complianceobjectives are identified and tracked to completion.

Partner with product teams across Applied to identify and implementsecurity requirements into their respective product developmentactivities.

Creating and driving the project scheduleworking with BU security champions and managing schedule progress;from large phases through to detailed tasks including understandingand managing dependencies within and across ProductGroups

Work with a global team to help implement andmonitor security controls to proactively identify product securityissues

Ability to interpret security tools andpenetration testing results to stakeholders and provide advice onvulnerability remediation and risk mitigation

Shouldhave good understanding of DevSecOps concepts / principles and cloudnative services to enable secure development and deployment ofapplications in the Cloud

Work with Information Securityand Information Technology teams to build & maintain controlsto manage varied risks including application and cyberrisks

Work across teams to develop and defineproject / program information security metrics &dashboards.

Qualification

Bachelors degree orequivalent experience in Security

Minimum 6 to 8 yearsof experience in Application and / or product security

Knowledge of regulatory guidelines and standards such as ISO27001SEMI Standards etc.

A thorough understanding of commonapplication security tools code libraries anddocumentation.

Understanding of threat modeling securityvulnerabilities attacker exploit techniques and methods for theirremediation.

Familiarity with the tools for varioussecurity activities : Static Code Analysis DAST Penetration TestingIntrusion Detection / Prevention etc.

Experience inperforming source code review

Working knowledge of onescripting language and or familiarity with at least one softwareprogramming language and a framework is a plus

Excellentwritten and verbal communication skills with the ability to adaptmessaging to executive technical and nontechnicalaudiences.

Certification in any security area is aplus

Experience working with manufacturing equipment orindustrial equipment is a plus

Experienceworking in semiconductor industry is aplus