Synopsys
Sr. Staff Product Cyber Security Engineer
Synopsys, Morrisville, North Carolina, United States, 27560
Synopsys is seeking a Sr Product Security Engineer to join our team, responsible for the creation and implementation of product security architectures, programs, processes, and engagement. The Synopsys Information Enterprise Security Engineering team helps the organization transform and securely build what's next for the business.
Key areas will include security design, engineering, automation, security research & development, and operationalization of security solutions.
This role guides and defines overarching technical security engineering and knows enterprise security best practices and requirements, to ensure Synopsys solutions are designed and implemented to the highest security standards and are differentiated in the marketplace.
Responsible for delivery of security framework to help inform the security organization on new industry trends and security solutions that solve complex problems and align with the enterprise security strategy, technologies, and platform options.
Job Requirements:
Lead the product security processes for Synopsys.
Implement the Product Security policies in all parts of the organization and ensure compliance with regulations and standards.
Guide new product development activities on designing Security and Privacy requirements into the products to protect customers and Synopsys.
Consult new product development teams implementing state-of-the-art Security Engineering & Architecture requirements.
Ensure Product Security support for products pre- and post-market.
Work closely with customers, sales/marketing/field personnel, and cross-functional teams to address product security issues.
Lead Product Security initiatives or projects.
Recognized process owner, with expertise across multiple functional areas.
Provide input into local, global, and corporate processes, representing function on review boards and teams.
Interpret KPI trends, drive continuous improvement processes.
Engage in and may lead internal and external audits with regulatory representatives, providing effective narrative and description of topic of expertise and overview of the business. May manage audit logistics and/or preparation.
Define training requirements on Product Security and provide training.
Responsible for initiation, internal containment, and support of ship and product holds for potential product escapes.
Coach and mentor others in Product Security topics and activities.
Basic Qualifications:
Bachelor of Science in product security, computer science, mathematics, statistics, or related field with applicable product security work experience.
6+ years of related work experience.
Previous experience working in a product security organization.
Preferred Qualifications:
Master’s degree preferred.
Understanding of US and International Product Security Regulations and Standards.
Strong knowledge of Product Security Concepts (e.g., Data Security and Privacy, Security Engineering and Architecture, Security Assurance).
Must possess strong communication, project management, and influencing skills, as well as have the ability to manage multiple tasks simultaneously.
Ability to represent the Product Security function within and across project teams.
Strong interpersonal skills, written, oral communication, and negotiation skills.
Strong in critical thinking and "outside the box" thinking.
Highly developed problem-solving skills. Strong analytical skills.
Demonstrated ability to successfully manage and complete projects in a matrix organization.
Demonstrated ability to work independently and as part of cross-functional teams.
Experience with BISO or Security Champion programs is a nice-to-have.
Familiarity with the following industry frameworks & regulatory standards: Payment Card Industry Data Security Standard (PCI-DSS), HIPAA-HITECH, Sarbanes-Oxley, General Data Protection Regulation (GDPR), Privacy Practices, ISO 27001/2, NIST Cybersecurity Framework (CSF/800.53), FedRamp, StteRamp, IEC 62443.
Relevant certifications such as CISSP, CISA, CISM, CRISC preferred.
The base salary range across the U.S. for this role is between $152,000.00 - $228,000.00. In addition, this role may be eligible for an annual bonus, equity, and other discretionary bonuses. Synopsys offers comprehensive health, wellness, and financial benefits as part of a competitive total rewards package. The actual compensation offered will be based on a number of job-related factors, including location, skills, experience, and education. Your recruiter can share more specific details on the total rewards package upon request.
#J-18808-Ljbffr
Key areas will include security design, engineering, automation, security research & development, and operationalization of security solutions.
This role guides and defines overarching technical security engineering and knows enterprise security best practices and requirements, to ensure Synopsys solutions are designed and implemented to the highest security standards and are differentiated in the marketplace.
Responsible for delivery of security framework to help inform the security organization on new industry trends and security solutions that solve complex problems and align with the enterprise security strategy, technologies, and platform options.
Job Requirements:
Lead the product security processes for Synopsys.
Implement the Product Security policies in all parts of the organization and ensure compliance with regulations and standards.
Guide new product development activities on designing Security and Privacy requirements into the products to protect customers and Synopsys.
Consult new product development teams implementing state-of-the-art Security Engineering & Architecture requirements.
Ensure Product Security support for products pre- and post-market.
Work closely with customers, sales/marketing/field personnel, and cross-functional teams to address product security issues.
Lead Product Security initiatives or projects.
Recognized process owner, with expertise across multiple functional areas.
Provide input into local, global, and corporate processes, representing function on review boards and teams.
Interpret KPI trends, drive continuous improvement processes.
Engage in and may lead internal and external audits with regulatory representatives, providing effective narrative and description of topic of expertise and overview of the business. May manage audit logistics and/or preparation.
Define training requirements on Product Security and provide training.
Responsible for initiation, internal containment, and support of ship and product holds for potential product escapes.
Coach and mentor others in Product Security topics and activities.
Basic Qualifications:
Bachelor of Science in product security, computer science, mathematics, statistics, or related field with applicable product security work experience.
6+ years of related work experience.
Previous experience working in a product security organization.
Preferred Qualifications:
Master’s degree preferred.
Understanding of US and International Product Security Regulations and Standards.
Strong knowledge of Product Security Concepts (e.g., Data Security and Privacy, Security Engineering and Architecture, Security Assurance).
Must possess strong communication, project management, and influencing skills, as well as have the ability to manage multiple tasks simultaneously.
Ability to represent the Product Security function within and across project teams.
Strong interpersonal skills, written, oral communication, and negotiation skills.
Strong in critical thinking and "outside the box" thinking.
Highly developed problem-solving skills. Strong analytical skills.
Demonstrated ability to successfully manage and complete projects in a matrix organization.
Demonstrated ability to work independently and as part of cross-functional teams.
Experience with BISO or Security Champion programs is a nice-to-have.
Familiarity with the following industry frameworks & regulatory standards: Payment Card Industry Data Security Standard (PCI-DSS), HIPAA-HITECH, Sarbanes-Oxley, General Data Protection Regulation (GDPR), Privacy Practices, ISO 27001/2, NIST Cybersecurity Framework (CSF/800.53), FedRamp, StteRamp, IEC 62443.
Relevant certifications such as CISSP, CISA, CISM, CRISC preferred.
The base salary range across the U.S. for this role is between $152,000.00 - $228,000.00. In addition, this role may be eligible for an annual bonus, equity, and other discretionary bonuses. Synopsys offers comprehensive health, wellness, and financial benefits as part of a competitive total rewards package. The actual compensation offered will be based on a number of job-related factors, including location, skills, experience, and education. Your recruiter can share more specific details on the total rewards package upon request.
#J-18808-Ljbffr