Sr. Director, Product Security
New York City or Remote
Full Time Senior-level / Expert USD 255K - 315K
Ro
Ro is a healthcare company designed to help you meet your health goals. We connect patients with US-licensed healthcare professionals all online. Get started today.You will be working remotely, with required monthly travel to our NYC headquarters.
What You'll Do:
- Lead the advancement of Ro’s product and platform security functions.
- Collaborate with key stakeholders across product, engineering, operations, and counsel to integrate trust and security principles throughout the ecosystem.
- Build upon and maintain our risk management framework to ensure the continual assessment of product and platform security risks. Establish and maintain repeatable patterns and processes that scale.
- Achieve a shift-left security culture by empowering developers via self-help tools, automated tests throughout the SDLC, threat modeling, and furthering our security-as-code initiatives.
- Conduct risk assessments of digital healthcare products and underlying platform components, identifying potential vulnerabilities and recommending risk mitigation strategies.
- Lead the threat modeling, application security, vulnerability disclosure, bug bounty, and client-side security programs.
- Build, maintain, and execute a robust security education program. Provide training, brownbags, secure code examples, and self-help resources that enable developers to deliver magic.
What You'll Bring:
- 12+ years of security engineering and hands-on development experience operating a modern tech stack/security tools
- Demonstrated track record leading product security, application security, and secure software development
- Master's degree in computer science/engineering or commensurate experience
- Strong interpersonal skills with the ability to build and maintain alignment with cross-functional partners
- Proven ability to execute security roadmaps through partnerships with business leaders and project managers
- Hands-on experience working with contemporary CI/CD development products (e.g. GitLab, GitHub, Jenkins, Sonarqube, Snyk, etc.)
- Experience in or familiarity with Java, Python, iOS, Android, JavaScript (NodeJS)
Tags: Android Application security CI/CD Computer Science GitHub GitLab Incident response iOS Java JavaScript Node.js Product security Python Risk assessment Risk management RMF SDLC SonarQube Vulnerabilities
Perks/benefits: Competitive pay Equity
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Officer jobs
- Open Senior Product Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Editor jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Engineer jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open IDS-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs