Product Security Manager at Secure Code Warrior

Product, Full-Time, Australia product full-time
Posted a month ago

Secure Code Warrior is the secure coding company.

Secure Code Warrior makes secure coding a positive and engaging experience for developers as they increase their skills. We guide each coder along their own preferred learning pathway, so that security-skilled developers become the everyday superheroes of our connected world.

We succeed through a human approach that uncovers the secure developer inside of every coder - helping development teams ship quality code faster, so they can focus on creating amazing, safe software for our world

The Product Security Manager is the point of contact for technical security in product initiatives or product security operations. They are proficient in web security and ideally have an understanding of (or background in) testing web applications for security issues. 
Core to the role is the Product Security Framework (PSF), a central component that governs the Product Security capability at SCW. The PSF’s remit is technically broad and includes Application Security, Infrastructure Security, and Threat Detection & Response.
This Product Security Manager is responsible for working with Product and Engineering teams to ensure product security standards and risk mitigations are identified and designed for (e.g., form part of the design constraints), and meet the requirements of the PSF.

Your role is also responsible for ensuring ProdSec operations; Validating vulnerability management, threat detection, and implemented controls are working as expected. You will also be continuously evaluating the security posture of products deployed in production.
SCW is a security company whose products live entirely in the cloud. We are privileged to store customer data and take our charge seriously to protect it while also ensuring our customers are safe using our products. This role is critical in ensuring we can meet these goals.

What will you do?

  • Build and operationalise product security capabilities in a scalable and sustainable way
  • Ensure security is part of the design of our products by instilling and championing a ‘start-left’ philosophy
  • Continuously evaluate the security of infrastructure, applications, and services that make up our products
  • Build security and process automation
  • Support and enhance security threat detection and response capability
  • What are we looking for?

  • A strong passion and pragmatic mindset to work in a scale-up environment that will let them find ways to enable security without the commonly associated slow down.
  • Skills to test for and identify vulnerabilities in web applications and infrastructure so that they can effectively advise on, and work with others, toward remediation
  • Ability to code in at least one programming / scripting language; Ideally familiar with a JS stack like MEAN (or otherwise willing to learn)
  • Understanding of Cloud and common Cloud architectures and deployments for delivering and operating SaaS products in AWS (or otherwise willing to learn)
  • Why Work at Secure Code Warrior

    You're joining us at an exciting stage in our journey, and are key to our future success. You’ll have the opportunity to create impact, deliver on your ideas, and use your spark; experience and expertise to help us live long and prosper.
    Warriors have full flexibility. We appreciate that you’ll do your best work when you’re rested and energized. With our business operating globally, there’s no 9-5 grind at Secure Code Warrior. You’re encouraged to work the days, times and in the way that suits your best. We also offer generous leave and work from home options so you can make work work for you.  
    We’re a tight-knit team that values humility, diversity, giving back to the community and to each other. Giving back is key to being a Warrior, and we do what we can to make the world a little bit brighter as we work to make it more secure. 

    Diversity. Inclusion. They’re more than just words for us. They’re the hard-and-fast principles guiding how we build our teams, cultivate leaders and create a company where every single person feels safe and celebrated. We have a global, multicultural following—we want to reflect that inside our walls and ensure people come as they are, we like it that way!
    Sound like a good fit? Apply Now