hip webinar automating integration workflow 800x100 (1)

Head of Product Security & Deputy CISO

Head of Product Security & Deputy CISO
by Admin on 04-13-2022 at 3:52 pm

Website Methodics

Perforce develops DevOps tools that improve software quality and security as well as team productivity for several of the world’s leading companies, such as PIXAR, CD Projekt Red, NASA, Verizon, Honda, NVIDIA.
Position Summary:
Perforce is searching or a Head of Product Security & Deputy CISO. The ideal candidate requires a working knowledge of information security technologies and experience in a mid-sized software development organization. In this role you will proactively work with the CISO and Product Lines to help implement practices that meet defined policies and standards for information security. Additionally, you will be responsible for overseeing the Application Security function to ensure that security tools and standards are integrated into the development lifecycle. You will also be managing the Product Line Information Security program to build and execute Product cyber strategy, training, processes, and fundamentals to increase and mature the cyber risk posture. Additionally, supporting the business to ensure that Information security risks are understood as part of any Merger and Acquisition activity.
Responsibilities:
  • Monitor and make recommendations to improve the enterprise information security risk management program, facilitating information security governance topics and status
  • Support achievement of  business goals by prioritizing data, application/product security and coordinating the evaluation, and deployment of current and future security technologies.
  • Assess and  propose solutions to enhance a strategic, comprehensive enterprise wide cyber and information security program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization.
  • Help with the enforcement of security policies, standards, guidelines, and procedures based on industry-standard best practices as well as assess and deploy emerging technologies that enable the firm to better manage and monitor the security posture.
  • Build strong relationships with stakeholders across the company in order to enhance appropriate security controls to protect the enterprise and product, making sure data security remains a top priority.
  • Partner closely with business stakeholders, especially technology and risk, to ensure that all applications and platforms are developed with security in mind and that appropriate security controls have been implemented.
  • Work cross functionally to evaluate and prepare the security function for current and future acquisitions, mergers, and new business ventures.
  • Building and implementing strategy, working with external stakeholders, including customers, vendors and regulators regarding assurance and diligence reviews.
  • Work closely with IT, Infrastructure, Cloud Ops, and other technology teams in the product lines to help secure information, computer, network, cloud, and processing systems.
  • Lead a small team of InfoSec professionals and mentor the more junior teams to ensure their continued success.
Requirements:
  • 10+ years’ experience within the information security domain.
  • CISM, CISA, GIAC, CISSP, or similar certifications
  • Clear understanding of the evolving needs within the cybersecurity function and strong relationships with the vendor and security community.
  • Effective and comfortable working with various stakeholders without full accountability or reporting.
  • Experience integrating mergers and acquisitions preferred.
  • Highly technical, confident at the operational management level.
  • Experience with highly sensitive data and maintaining its security as a top priority; understanding big data and technology at scale.
  • Understanding of public and private cloud, security tools to monitor and support cloud adoption, and the latest tools and methodologies as it relates to cloud security.
  • Strong quantitative and analytical abilities.
  • Forward thinking; ability to think outside the box to anticipate potential new threats and remain creative in solutions delivery.
  • Ability to anticipate the unknown, willingness to see past the present and continually innovate and create new ways to remain at the forefront of security.
  • Strong leader, team player, contributor, and collaborator.
  • Prior experience in a regulated environment preferred but not required.
  • Proponent of continuous improvement process and the ability to challenge the status quo.
Share this post via: