R&D Security Manager

R&D / Engineering | Raanana, Israel | ISRAEL

We are looking for Application Security Manager, to join the NICE Enterprise division and lead the application security aspects of the different R&D groups, and execute SDLC adoption in the different groups.
We have very wide scope of development technologies and deployment models. You will be responsible to setup and maintain security culture in the R&D organizations while taking into consideration the variety of needs and risks of each organization and product.

Responsibilities:

  • Responsible to establish and track the secured development lifecycle processes across the enterprise portfolio R&D organizations
  • Responsible to maintain one SDLC program / policy that all NICE R&D organizations need to adhere to, and monitors the adoption of the program in the different organizations
  • Translates the NICE security policy into day to day practices of the developers in regards to security practices
  • Provide security best practice for R&D to follow
  • Defines and tracks the security training of developers and champions
  • Participates in specific security reviews
  • Defines clear criteria for gates and security reviews
  • Assists the PMs to translate regulations into security product requirements
  • Maintains security incident response – on the R&D side
  • Verifies the different R&D groups are working with up-to-date security guidelines
  • Works with security consultants and security champions to continuously improve the R&D teams security awareness and tools
  • Promotes Pen tests, Threat modeling and security audits in the different products
  • Acts as counterpart to InContact Trust office
  • Proactively alerts on new vulnerabilities detected in the software being used in the enterprise
  • Helps manage risk assessment
  • Continuously supports security champions in complex questions around threats and security design alternatives
  • Manage a team of security consultants

Education:

  • BSc in Computer Science/Software Engineering or equivalent

Requirements

  • At least 5 years of experience in application security, including experience in adoption and execution of SDL practices in R&D organizations
  • Vast knowledge and hands on experience in penetration testing.
  • Vast experience as software developer
  • Experience in security architecture
  • Experience in cloud technologies
  • Excellent Communication skills
  • Leadership without authority
  • Ability to translate high level plan into execution and lead the R&D and product organizations into executing the plan
  • Self-sufficient and independent
  • Delivery oriented
·         Ability to cope under high pressure

Share with a friend Facebook Twitter LinkedIn Google+