Information Security Product Manager

Our mission is to make biology easier to engineer. Ginkgo is constructing, editing, and redesigning the living world in order to answer the globe’s growing challenges in health, energy, food, materials, and more. Our bioengineers make use of an in-house automated foundry for designing and building new organisms.
You will be a member of the Product team, supporting the Information Security team, focusing on key internal initiatives to enable the secure operation and scaling of Ginkgo Bioworks. As a Product Manager, you will drive the vision and roadmap for these initiatives. You must have strong stakeholder management skills and approach problems from a data and systems-design perspective. You will be working closely with a variety of stakeholders across departments to understand their goals, current workflows, information they manage, current security practices, identify gaps, develop requirements, and create a roadmap/portfolio of solutions that solve these needs. We are looking for an exceptional person with hands-on experience in Information Security with a proven track record in incident response, vulnerability and risk management, and project/product management. Candidates should know industry best practices and have a strong desire to expand those best practices for the specific needs of Ginkgo Bioworks and synthetic biology as a whole.
Please note: We are looking for someone who can work on-site in our office in Boston’s exciting Seaport district, with some remote work possible.

Responsibilities

• Proactively work to understand IT language/concepts such as directory services (e.g., Active Directory), networks, cloud technologies (AWS a plus), databases, firewalls
• Collaborate with teams of engineers and consultants to deliver solutions to mitigate information security vulnerabilities and risks 
• Proactive in communicating possible risks and recommendations to mitigate
• Break down complex problems into actionable steps
• Educate stakeholders on vulnerability and risk management from fundamentals to advanced topics, e.g., supply chain and third-party risks
• Work on product planning, including short-term release plans and long-term roadmaps for your functional area
• Stay on top of new solutions and practices being developed in the industry and understand how these new technologies and practices may be applied to your functional area
• Define and track key performance metrics and measurable success criteria
• Collect and synthesize user feedback to identify product gaps and define requirements to meet the gaps
• Work with stakeholders/engineers to understand the implications of solution ideas and integration with Ginkgo infrastructure
• Lay the foundation for compliance with cybersecurity frameworks such as NIST 800-171, Cybersecurity Maturity Model Certification
• Collaboratively develop the best solutions that can be delivered in a time and cost-sensitive manner
• Build, groom, and prioritize the backlog and roadmap
• Ensure sufficient documentation and training to support processes and tools for 24x7 operations across continents

Minimum Requirements

• BA/BS or higher degree
• 2+ years of project or product management experience and a proven track record in providing scalable solutions that integrate with enterprise infrastructure
• Minimum 5 years of experience in IT and/or cyber security
• Experience working in environments under regulations such as FedRAMP, FISMA, CLIA, SOX, HIPAA, and/or GXP
• Willing and able to stay current on information security management issues
• Excited to work with the best scientists and engineers
• Ability to thrive and stay calm in a fast-paced, high-pressure, ever-changing environment
• Strong organizational and communication skills
• Ability to communicate technical information to non-technical people in an easily understandable way

Preferred Capabilities and Experience

• Knowledge of incident response, vulnerability management standards, industry best practices, and frameworks
• CISSP, CISA, or industry equivalent certification is a plus but not a requirement
• Experience with Federal Government security programs and Control Frameworks
• Architectural level of understanding of software, security technologies (e.g., SSL, certificates), networks, and security operations
• Experience with securing information in sources such as file systems, databases, SaaS applications, enterprise applications, internally-developed software, etc.
• High level working familiarity with information security technologies such as directory services, databases (relational and/or NoSQL), cloud computing, SaaS
• Familiarity in working with teams that leverage cloud-based technologies such as AWS
• Familiarity with Agile goals, principles, and practices strongly desired
• Proven track record of working with developers, operations, and users to troubleshoot and resolve challenging problems in a timely manner
• Experience working in Life Sciences a plus

To learn more about Ginkgo, check out some recent press:What is it really like to take your company public via a SPAC? One Boston biotech shares its journey (Fortune)Ginkgo Bioworks resizes the definition of going big in biotech, raising $2.5B in a record SPAC deal that weighs in with a whopping $15B-plus valuation (Endpoints News)Ginkgo Bioworks CEO on scaling up Covid-19 testing: ‘If we try, we can win’ (CNBC)Ginkgo raises $70 million to ramp up COVID-19 testing for employers, universities (Boston Globe)Ginkgo Bioworks Redirects Its Biotech Platform to Coronavirus (Wall Street Journal)Ginkgo Bioworks Provides Support on Process Optimization to Moderna for COVID-19 Response (PRNewswire)The Life Factory: Synthetic Organisms From This $1.4 Billion Startup Will Revolutionize Manufacturing (Forbes)Synthetic Bio Pioneer Ginkgo Raises $290 Million in New Funding (Bloomberg)Ginkgo Bioworks raises $350 million fund for biotech spinouts (Reuters)Can This Company Convince You to Love GMOs? (The Atlantic)
We also feel that it’s important to point out the obvious here – there’s a serious lack of diversity in our industry, and that needs to change. Our goal is to help drive that change. Ginkgo is deeply committed to diversity, equity, and inclusion in all of its practices, especially when it comes to growing our team. Our culture promotes inclusion and embraces how rewarding it is to work with people from all walks of life.  
We’re developing a powerful biological engineering platform, so we must remain mindful of the many ways our technology can – and will – impact people around the world. We care about how our platform is used, and having a diverse team to build it gives us the best chance that it’s something we’ll be proud of as it continues to grow. Therefore, it’s critical that we incorporate the diverse voices and visions of all those who play a role in the future of biology.
It is the policy of Ginkgo Bioworks to provide equal employment opportunities to all employees and employment applicants.