BD · 2 days ago
Senior Manager, Software Development Product Security
Wonder how qualified you are to the job?
Health CareMedical Device
Insider Connection @BD
Responsibilities
Leading role in defining the strategic vision, practices, and operations for product security
Collaborate with BD’s Product Security Office (PSO) to understand BD’s pre-market security requirements, and translate those into product level requirements
Establish a post-market monitoring program
Define and drive a short term, mid-term, and long-term security engineering roadmap
Create, document, and drive implementation of processes that seamlessly integrate security standard methodologies into all stages of the SDLC
Operationalize and lead ongoing CVSS assessments and triage of vulnerabilities
Operationalize and lead STIG reviews and POA&M management
Use skilled judgment in ensuring risk mitigation, effectively prioritize urgent vs. important tasks, minimize ad-hoc tasks by creating repeatable processes and raise appropriately to inform leadership of any issues
Assess security capabilities and gaps and recommend remedial actions or solutions that are consistent with regulatory and legal requirements as well as industry standard methodologies
Plan, lead, and drive the execution of complex, multi-organizational security initiatives
Create and maintain dashboards in JIRA and other tools to track progress and create transparency for collaborators
Directly engage with product engineering teams, engineering leadership, and cross-functional leaders to evangelize, coach and train associates on security processes and best practices
Cultivate a community of practice that promotes security engineering
Demonstrate an approach toward automation and transparency
Demonstrate a bias for action and agile development mentality
Lead retrospectives to solicit feedback and promote continuous improvement
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Bachelor's Degree
Strong written and verbal communications skills, and comfortable communicating with all levels of an organization
Ability to drive through ambiguity to create clarity and understanding
8 years of experience in software development
3-5 years of leadership experience
3-5 years of product security, Agile practices
2 years experience working with security requirements for government clients including alignment to STIGs and defining POA&Ms (Plan of Action and Milestones)
2 years experience with application of security findings and translating to software/system requirements
Experience with threat analysis, response, and innovative solutions
Implementing closed-loop automation and digital tracking methods
Knowledge of cyber security analysis with the ability to adapt standards and methods to account for emerging practices
Preferred
Master's Degree
Experience with software development in the medical device industry or other regulated field
Experience with vulnerability scanning tools, penetration testing, and other security testing methodologies
Experience with cloud-hosted products using AWS or other public cloud providers
Experience with on-premises client-hosted products maximizing Windows OS
CISM, CISSP, and/or other cyber security certification
Company
BD
BD helps advance clinical therapy with the process for patients and health care providers with innovative technology services and solutions.
H1B Sponsorship
BD has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2023 (48)
2022 (142)
2021 (217)
2020 (149)
Funding
Current Stage
Public CompanyTotal Funding
$540MKey Investors
Steris
2023-08-02Post Ipo Equity· $540M
Leadership Team
Recent News
2024-06-04
Business Wire
2024-06-03
Company data provided by crunchbase