Information Security Engineer

Position: GIS IT Security

Location: Santa Clara CA

Duration: FTE

Salary: 90k/yr

Roles & Responsibilities:

Information Security Engineer

Key Responsibilities:

• Partner with various stake holder groups including Product/Engineering Legal HR and IT to promote and build a culture of security and implement controls accordingly
• Work with Information Security and Information Technology teams to build & maintain controls to manage varied risks including application insider and cyber risks
• Monitor internal and external threat landscape to update strategy and intellectual protection program roadmap
• Work with a global team to help implement and monitor security controls to proactively identify insider risk issues and application security issues
• Partner with software development teams across Applied to incorporate and implement secure SDLC concepts such as training security requirements threat modeling code/design reviews and security testing
• Partner with software development teams to implement processes and tools to enable code analysis vulnerability assessment open source license compliance
• Review and update policies and provide training as needed to internal & external audience
• Provide periodic reports to management team and key stakeholders

Generic Managerial Skills:

• 34 years of management experience in information security or related field and overall 710 years of information security experience
• Prior experience in partnering with crossfunctional teams to deliver impactful security initiatives
• Prior experience working on application security product security cyber security or managing insider risk initiatives preferred
• Prior experience with threat modeling security design reviews and security architectural concepts
• Any recognized security certifications e.g. CISSP CISA CISM etc.
• Working experience in a global company is preferred
• Excellent analytical and critical thinking skills
• Ability to manage multiple projects with team members from various business units/functions and countries
• Ability to work both independently and work within a team to analyze complex business problems and recommend solutions
• Ability to travel periodically
• Expertise across common information security management frameworks such as ISO/IEC 27001 ITIL COBIT NIST including 80053 and Cybersecurity Framework is preferred
• Strong interpersonal writing and communication skills; ability to clearly articulate and visually present complex advice to managers at all levels