Technical Product Manager

Description:

Location: Remote

A critical responsibility of a Software Security Product Owner is to understand the common software security challenges within the organization and to come up with operational procedures and security solutions the respective application teams can use to ensure we ship secure products. You will be responsible for identifying key metrics that measure success and that provide insights into to identify security areas the need focus. As a key security stakeholder within the Digital organization, the security product owner’s primary objective is to make security easy for developers, engineers, product managers, and security teams alike while most importantly ensuring Digital applications are secure by design.

Responsibilities:

• Collaborate with stakeholders (including Scrum Teams & Values Streams) on feature requests around Security Compliance items to assess priority, value, and development cost
• Define and communicate the security backlog and strategy for SAFe teams and trains
• Understand internal customer needs to define short term and long-term product direction
• Decompose high-level requirements into user stories and tasks, manage and prioritize the product backlog, participate in scrums and meta-scrums, and validate delivered solution designs
• Understands, assesses and critiques the architecture proposed by the application architecture team and ensures the scrum team delivery is aligned to the solution’s mission
• Communicate security backlog and vision effectively to colleagues and Digital leadership
• Perform industry research as necessary to support feature development
• Partner with engineering teams to define, track and test user stories in an agile software development life-cycle
• Provide security product subject matter expertise and leadership
• Work with product management to track schedule against the roadmap and escalate risks/issues
• Explore new market space developments, and evaluating/understanding competitive tools
• Collaborate with the engineering team to prioritize security features and scan related findings and facilitate determining the best technical solutions.

Qualifications:

• Experience with researching, designing, building, and deploying new security solutions and or improving the security of existing solutions within the security software development lifecycle
• Ensure product and security stakeholders’ needs and expectations are met
• Promote transparency by helping communicate through SAFe/SCRUM practices
• Collaborate with external vendors on requirements definition and feature development
• Ability to research competitive market solutions that strengthens security posture
• Collaboration with architecture, development, and design teams
• 4+ years of experience in Security
• Proven experience building consumer-facing products at scale
• Proven ability to deliver convincing business case recommendations to senior management
• Demonstrated collaborative style, with ability to lead and influence diverse teams
• Demonstrated experience driving agile product development
• Start-up mentality and desire to innovate at a fast pace
• Passion for securing healthcare products
• Strong critical thinker who makes balanced, insightful decisions
• Ability to thrive in a fully SAFe-Agile development environment
• Maintain strong relationships across key stakeholders and constituents
• Engaging and concise speaking and presentation skills
• Knowledge of various security tools: SAST, DAST, Container scans, SCA
• Knowledge of security testing (pentests, API tests, Web Security Tests, BOT tests)
• Knowledge of DevSecOps concepts in agile environments
• Product Manager / Owner certification
• SANS GIAC, CISSP and related security certifications
• Bachelor’s Degree in Computer Science, Cyber Security or equivalent work experience
• Experience working on or directly with software security development
• Knowledge of and experience with one or more information security domains