SAS
Manager, Product Security Technical Risk Management
SAS, Cary, North Carolina, United States, 27518
:Manager- Product Security Technical Risk Management - Remote or Hybrid
Nice to meet you!Were a leader in data and AI. Through our software and services, we inspire customers around the world to transform data into intelligence - and questions into answers.Were also a debt-free multi-billion-dollar organization on our path to IPO-readiness. If you're looking for a dynamic, fulfilling career coupled with flexibility and world-class employee experience, you'll find it here.About the jobWere looking for a dynamic Manager of Product Security and Technical Risk Management whos passionate about product security and ready to take on an exciting new challenge. In this highly visible role, youll work closely with leaders across divisions, connecting dots and orchestrating alignment across teams to ensure the security of our award-winning software. Your experience with knowledge of application security and people management will be key to success as you lead a growing team of applications security architects and collaborate across the business.As far as location goes, well meet you where youre at be fully remote, onsite at our World Headquarters in Cary, or create the hybrid mix that suits you best. Were flexible.Sound like a good fit? Keep reading.As a Manager, Product Security Technical Risk Management,
you will:Build relationships with product management, engineering, and architecture teams, advocating for better security practices and continuous improvement at every step of the development lifecycle.Report on the posture of the organizations security initiatives and make strategic recommendations to improve security maturity and mitigate security risks within the organization.Drive requirements for the integration of application security tools and practices into the enterprise DevOps practice or CI/CD pipeline.Oversee and mature the day-to-day operations of the team to ensure the teams partnership and processes are clearly understood with product and engineering teams across SAS and continuously improved based on feedback.Manage aspects of the department including teamwork, performance management, feedback, and professional growth through collaboration with SAS human resources, SAS education and leadership.Proactively collaborate with senior management as needed with complex or complicated decisions or projects.Function as an advisor to employees regarding skills development, tasks, projects, and operations. You are a mentor and a leader, passionate about developing product security talent.Ensures all applicable security policies and processes are followed to support the organizations secure software development goals.Required qualifications8+ years of experience in software development, system architecture and design, software testing, or related experience5+ years hands on experience with product or application secure development life cycle3-5 years of experience in a people leadership role, leading engineering teams focused on application, product, and/or corporate security.Bachelors degree in a quantitative field, preferably in Computer Science or a related discipline.Experience developing cooperative partnerships with engineering teams to help them deliver secure code effectively.Proven written and verbal communication skills and ability to understand the value and drivers behind adjusting style and tone for a given audience, including technical and non-technical peers and leaders across the company.A strong track record of managing performance, calibrating expectations, and building and maintaining high performing, inclusive security teams.Identifying and leveraging opportunities to accelerate results and build capability by assigning tasks and decision-making responsibilities to individuals or teams with clear boundaries, expectations, support, and follow-up.Ability to work during eastern standard time work hoursYoure curious, passionate, authentic and accountable. These are our values and influence everything we do.Preferred qualificationsDemonstrate expert knowledge of Secure Development Lifecycle methodology and secure development best practices, as well as familiarity with cybersecurity threats, countermeasures, and issues.Strong foundation in core information security and/or cyber security principles and conceptsFamiliarity with SaaS security considerations including public cloud security deployment and implementation issues (Azure, AWS)World-Class BenefitsHighlights include...Comprehensive medical, prescription, dental and vision plans.Medical plan options include...
PPO with low annual deductible and copays.HDHP combined with a health savings account with a contribution from SAS (no access to on-site health care center).
Onsite Health Care Center (HQ) thats free to employees and family members enrolled in the PPO plan. There's a pharmacy too! Not local to HQ? The pharmacy will ship prescriptions for no additional charge!An industry-leading 401k plan.Generous time away including vacation time, a variety of paid holidays, and our much-loved U.S. Winter Wellness Break between December 25 and January 1.Volunteer Time Off, parental leave and unlimited paid sick days.Generous childcare benefits for all full-time employees.Diverse and InclusiveAt SAS, its not about fitting into our culture its about adding to it. We believe our people make the difference. Our diverse workforce brings together unique talents and inspires teams to create amazing software that reflects the diversity of our users and customers. Our commitment to diversity is a priority to our leadership, all the way up to the top; and its essential to who we are. To put it plainly: you are welcome here.Additional InformationTo qualify, applicants must be legally authorized to work in the United States, and should not require, now or in the future, sponsorship for employment visa status. SAS is an equal opportunity/Affirmative Action employer. All qualified applicants are considered for employment without regard to race, color, religion, gender, sexual orientation, gender identity, age, national origin, disability status, protected veteran status or any other characteristic protected by law. Read more: Know Your Rights. Also view the Pay Transparency notice.Resumes may be considered in the order they are received. SAS employees performing certain job functions may require access to technology or software subject to export or import regulations. To comply with these regulations, SAS may obtain nationality or citizenship information from applicants for employment. SAS collects this information solely for trade law compliance purposes and does not use it to discriminate unfairly in the hiring process.SAS only sends emails from verified sas.com email addresses and never asks for sensitive, personal information or money. If you have any doubts about the authenticity of any type of communication from, or on behalf of SAS, please contact
Recruitingsupport@sas.com.#SAS #LI-WR1#applicationsecurity
Nice to meet you!Were a leader in data and AI. Through our software and services, we inspire customers around the world to transform data into intelligence - and questions into answers.Were also a debt-free multi-billion-dollar organization on our path to IPO-readiness. If you're looking for a dynamic, fulfilling career coupled with flexibility and world-class employee experience, you'll find it here.About the jobWere looking for a dynamic Manager of Product Security and Technical Risk Management whos passionate about product security and ready to take on an exciting new challenge. In this highly visible role, youll work closely with leaders across divisions, connecting dots and orchestrating alignment across teams to ensure the security of our award-winning software. Your experience with knowledge of application security and people management will be key to success as you lead a growing team of applications security architects and collaborate across the business.As far as location goes, well meet you where youre at be fully remote, onsite at our World Headquarters in Cary, or create the hybrid mix that suits you best. Were flexible.Sound like a good fit? Keep reading.As a Manager, Product Security Technical Risk Management,
you will:Build relationships with product management, engineering, and architecture teams, advocating for better security practices and continuous improvement at every step of the development lifecycle.Report on the posture of the organizations security initiatives and make strategic recommendations to improve security maturity and mitigate security risks within the organization.Drive requirements for the integration of application security tools and practices into the enterprise DevOps practice or CI/CD pipeline.Oversee and mature the day-to-day operations of the team to ensure the teams partnership and processes are clearly understood with product and engineering teams across SAS and continuously improved based on feedback.Manage aspects of the department including teamwork, performance management, feedback, and professional growth through collaboration with SAS human resources, SAS education and leadership.Proactively collaborate with senior management as needed with complex or complicated decisions or projects.Function as an advisor to employees regarding skills development, tasks, projects, and operations. You are a mentor and a leader, passionate about developing product security talent.Ensures all applicable security policies and processes are followed to support the organizations secure software development goals.Required qualifications8+ years of experience in software development, system architecture and design, software testing, or related experience5+ years hands on experience with product or application secure development life cycle3-5 years of experience in a people leadership role, leading engineering teams focused on application, product, and/or corporate security.Bachelors degree in a quantitative field, preferably in Computer Science or a related discipline.Experience developing cooperative partnerships with engineering teams to help them deliver secure code effectively.Proven written and verbal communication skills and ability to understand the value and drivers behind adjusting style and tone for a given audience, including technical and non-technical peers and leaders across the company.A strong track record of managing performance, calibrating expectations, and building and maintaining high performing, inclusive security teams.Identifying and leveraging opportunities to accelerate results and build capability by assigning tasks and decision-making responsibilities to individuals or teams with clear boundaries, expectations, support, and follow-up.Ability to work during eastern standard time work hoursYoure curious, passionate, authentic and accountable. These are our values and influence everything we do.Preferred qualificationsDemonstrate expert knowledge of Secure Development Lifecycle methodology and secure development best practices, as well as familiarity with cybersecurity threats, countermeasures, and issues.Strong foundation in core information security and/or cyber security principles and conceptsFamiliarity with SaaS security considerations including public cloud security deployment and implementation issues (Azure, AWS)World-Class BenefitsHighlights include...Comprehensive medical, prescription, dental and vision plans.Medical plan options include...
PPO with low annual deductible and copays.HDHP combined with a health savings account with a contribution from SAS (no access to on-site health care center).
Onsite Health Care Center (HQ) thats free to employees and family members enrolled in the PPO plan. There's a pharmacy too! Not local to HQ? The pharmacy will ship prescriptions for no additional charge!An industry-leading 401k plan.Generous time away including vacation time, a variety of paid holidays, and our much-loved U.S. Winter Wellness Break between December 25 and January 1.Volunteer Time Off, parental leave and unlimited paid sick days.Generous childcare benefits for all full-time employees.Diverse and InclusiveAt SAS, its not about fitting into our culture its about adding to it. We believe our people make the difference. Our diverse workforce brings together unique talents and inspires teams to create amazing software that reflects the diversity of our users and customers. Our commitment to diversity is a priority to our leadership, all the way up to the top; and its essential to who we are. To put it plainly: you are welcome here.Additional InformationTo qualify, applicants must be legally authorized to work in the United States, and should not require, now or in the future, sponsorship for employment visa status. SAS is an equal opportunity/Affirmative Action employer. All qualified applicants are considered for employment without regard to race, color, religion, gender, sexual orientation, gender identity, age, national origin, disability status, protected veteran status or any other characteristic protected by law. Read more: Know Your Rights. Also view the Pay Transparency notice.Resumes may be considered in the order they are received. SAS employees performing certain job functions may require access to technology or software subject to export or import regulations. To comply with these regulations, SAS may obtain nationality or citizenship information from applicants for employment. SAS collects this information solely for trade law compliance purposes and does not use it to discriminate unfairly in the hiring process.SAS only sends emails from verified sas.com email addresses and never asks for sensitive, personal information or money. If you have any doubts about the authenticity of any type of communication from, or on behalf of SAS, please contact
Recruitingsupport@sas.com.#SAS #LI-WR1#applicationsecurity