Senior Manager, Software Development Product Security @ BD | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
Senior Manager, Software Development Product Security jobs in Lexington, KY
Be an early applicantLess than 25 applicants
job-post-linkOriginal Job Post
company-logo

BD · 1 day ago

Senior Manager, Software Development Product Security

positionLexington, KY
timeFull-time
remoteRemote
senioritySenior Level
money$155K/yr - $256K/yr
date8+ years exp

Wonder how qualified you are to the job?

ftfMaximize your interview chances
Health CareMedical Device
check
Comp. & Benefits

Insider Connection @BD

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Leading role in defining the strategic vision, practices, and operations for product security
Collaborate with BD’s Product Security Office (PSO) to understand BD’s pre-market security requirements, and translate those into product level requirements
Establish a post-market monitoring program
Define and drive a short term, mid-term, and long-term security engineering roadmap
Create, document, and drive implementation of processes that seamlessly integrate security standard methodologies into all stages of the SDLC
Operationalize and lead ongoing CVSS assessments and triage of vulnerabilities
Operationalize and lead STIG reviews and POA&M management
Use skilled judgment in ensuring risk mitigation, effectively prioritize urgent vs. important tasks, minimize ad-hoc tasks by creating repeatable processes and raise appropriately to inform leadership of any issues
Assess security capabilities and gaps and recommend remedial actions or solutions that are consistent with regulatory and legal requirements as well as industry standard methodologies
Plan, lead, and drive the execution of complex, multi-organizational security initiatives
Create and maintain dashboards in JIRA and other tools to track progress and create transparency for collaborators
Directly engage with product engineering teams, engineering leadership, and cross-functional leaders to evangelize, coach and train associates on security processes and best practices
Cultivate a community of practice that promotes security engineering
Demonstrate an approach toward automation and transparency
Demonstrate a bias for action and agile development mentality
Lead retrospectives to solicit feedback and promote continuous improvement

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Software DevelopmentProduct SecurityAgile PracticesSecurity RequirementsSTIGsPOA&MsThreat AnalysisAutomationDigital TrackingCyber Security AnalysisProblem-SolvingCommunicationLeadershipAdaptabilityMedical Device IndustryRegulated FieldVulnerability ScanningPenetration TestingSecurity Testing MethodologiesCloud-Hosted ProductsAWSPublic Cloud ProvidersOn-Premises Client-Hosted ProductsWindows OSCISMCISSPCyber Security Certification

Required

Bachelor's Degree
Strong written and verbal communications skills, and comfortable communicating with all levels of an organization
Ability to drive through ambiguity to create clarity and understanding
8 years of experience in software development
3-5 years of leadership experience
3-5 years of product security, Agile practices
2 years experience working with security requirements for government clients including alignment to STIGs and defining POA&Ms (Plan of Action and Milestones)
2 years experience with application of security findings and translating to software/system requirements
Experience with threat analysis, response, and innovative solutions
Implementing closed-loop automation and digital tracking methods
Knowledge of cyber security analysis with the ability to adapt standards and methods to account for emerging practices

Preferred

Master's Degree
Experience with software development in the medical device industry or other regulated field
Experience with vulnerability scanning tools, penetration testing, and other security testing methodologies
Experience with cloud-hosted products using AWS or other public cloud providers
Experience with on-premises client-hosted products maximizing Windows OS
CISM, CISSP, and/or other cyber security certification

Company

BD

twittertwittertwitter
Glassdoor
3.9
company-logo
BD helps advance clinical therapy with the process for patients and health care providers with innovative technology services and solutions.
dateFounded in 1897
location
Franklin Lakes, New Jersey, USA
people-size10,001+ employees
web-link
https://www.bd.com

H1B Sponsorship

BD has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2023 (48)
2022 (142)
2021 (217)
2020 (149)

Funding

Current Stage
Public Company
Total Funding
$540M
Key Investors
Steris
2023-08-02Post Ipo Equity· $540M

Leadership Team

leader-logo
Tom Polen
Chairman, CEO and President
linkedin
leader-logo
Philippe Francois
Senior Vice President, Global Supply Chain
linkedin

Recent News

Fierce Biotech
BD claims Edwards’ hospital monitoring portfolio for $4.2B
2024-06-04
Business Wire
Edwards Lifesciences to Sell Critical Care to BD
2024-06-03
PR Newswire
BD to Acquire Edwards Lifesciences' Critical Care Product Group for $4.2 Billion to Expand Smart Connected Care Solutions and Become an Advanced Monitoring Technology Leader
2024-06-03
Company data provided by crunchbase
logo

Orion

Your AI Copilot