This Job Vacancy has Expired!

DevSecOps Director

Posted on May 9, 2020 by Request Technology - Kyle Honn

Reston, VA 20190
IT
Immediate Start
$180k - $200k Annual
Full-Time

DevSecOps Director

*We are unable to sponsor as this is a permanent full time role*

Responsibilities

  • Develop and execute secure software development strategy for the enterprise, including policies, standards and governance
  • Manage and design automation to integrate Application Security into various CI/CD across the enterprise
  • Develop and maintain relationships across technology organization, the security industry, peer organizations and other entities as necessary to benchmark Company Application Security program and keep current in best practices
  • Manage continuous release planning and execution and integrate with security design and engineering work across multiple groups and technical constituencies
  • Develop communications program for application threats and external and internal security events
  • Improve and expand application security risk posture and processes across the enterprise
  • Create and supports metrics that report application risk posture and progress over time
  • Lead a team responsible for conducting static code analysis, threat modelling, and developer training program
  • Develop and mentor staff and managers to achieve career goals and maintain leadership succession planning
  • Leads cross-functional teams to define objectives, strategies and domain performance metrics
  • Evaluate and utilize outside consultants to support security capabilities

Qualifications

  • Bachelor's degree in a technical field, a Master's is preferred
  • 10+ years of escalating managerial work-experience in a highly diversified organization.
  • 10+ years of increasing responsibility and work complexity to include progressive management roles in large, complex organizations.
  • 5 years of experience with Applications Security, including familiarity with the leading toolsets supporting Application Security (dynamic and static)
  • 2 years of experience with product design, delivery, and ownership and threat modelling
  • Solid experience in enabling organizations with DevSecOps
  • Solid experience with establishing and executing application security strategy
  • Solid experience in static code analysis and third-party software composition analysis
  • Solid experience in establishing and rolling out Threat Modeling enterprise wide that can be consumed by developers and engineers
  • Strong experience building security communities across the enterprise through evangelism and training programs
  • Knowledge of ISO 27001/27002, ITIL, COBIT and NIST
  • Ability to solve very complex security issues that span legal, compliance and regulatory obligations across various lines of business and shared service areas of the company
  • Strong leader with team-oriented interpersonal skills, with the ability to interface and influences effectively senior management, IT leaders, and technology vendors
  • Any security related certifications are a plus (CISM, CISA, CISSP, etc.)
  • Ability to prioritize and set the destiny of a security product suite and the application security program
  • Ability to lead and motivate cross-functional, interdisciplinary teams to achieve tactical and strategic goals
  • Strong problem solving and program execution skills; Ability to prioritize and drive difficult decisions among heads of development teams and CTOs

If this is an opportunity that you're interested in please email your resume to:

(see below)


Reference: 887518877

Set up alerts to get notified of new vacancies.