General Electric Director - Cyber Security in San Francisco, California

Role Summary:

We are looking for a Director of Product Security with deep domain knowledge in threat intelligence research and security by design. You will be working with other Leaders in Software Engineering, User Interaction Design Engineering, Platform team, and the Product Owners to lead the technical insight and industry perspective in the creation, delivery, and integration of complex and comprehensive security solutions.

Essential Responsibilities:

You are a seasoned Cyber Security Leader with a passion for team-based formation of advanced cyber-based product development and actionable systems. In this role, you will mature your team's capabilities and adapt defensive secure development practices to help the development and engineering teams build secure products and services. As the Director of Product Security, you will apply your knowledge of management, secure software and system development methodologies, best practices and proven processes to help deliver secure products. However, you think as a security researcher who thrives on addressing real world problems and likes to code.

In this role, you will:

  • Demonstrate very strong technical leadership and people management skills including solid communication and analytical skills with thorough understanding of product security, development and successful problem definition, decomposition, estimation and resolution

  • Influence decision making through active partnership with cross-functional teams

  • Manage strategic business partnerships and relationships through Technical, Financial, Contractual and Relationship management

  • Plan and manage budgets related to scope of team

  • Communicate effectively both within immediate team and GE leadership. Ensure team receives consistent messages and has clear understanding of business direction, strategy and results

  • Build a world class product security team to consistently deliver world class advisory services and tooling, to help build secure and complex platforms

  • Guide team to drive tailored SDL practice into specific engineering

  • Consult architect on security requirements and utilize best practices to meet them

  • Accountable for backlog of security-related tools that will improve the maintainability and security of our platform and products, and the pace of development

  • Promotes standards through Secure Development Lifecycle (SDL) workshops, knowledge shares, and code walk-throughs Qualifications/Requirements: Basic Qualifications:

  • Bachelor's Degree in Computer Engineering or in a STEM major (Science, Technology, Engineering, or Math) and/or a minimum of 4 years of equivalent experience

  • Five or more years of experience in security development life cycle

  • At least 8 years of experience involvement with development team(s) that delivered secure software and systems based servicesEligibility Requirements: (Country Specific)

  • Legal authorization to work in the U.S. is required. GE may agree to sponsor an individual for an employment visa now or in the future if there is a shortage of individuals with particular skills.

  • Any offer of employment is conditioned upon the successful completion of a background investigation and drug screen

  • Must be willing to travel

  • Must be willing to work out of an office located in San Ramon, CA Desired Characteristics: Technical Expertise:

  • Object Oriented Design and principles

  • Ability to write high quality and review infrastructure as code

  • Knowledge of CI/CD and automation tools (Chef, Git, Jenkins)

  • Knowledge of Identity management and identity federation (SAML, Oauth, SCIM, XACML)

  • Experienced in developing web services (SOAP/REST)

  • Must be available for on call for potential security response

  • Knowledge of application risk identification and evaluation techniques

  • Knowledge of Cyber Security and full knowledge of multiple related engineering functions

  • Experience securing applications within cloud platforms such as AWS, Azure and alike.

  • Experience with broad set of information security technologies and processes within a SaaS, IaaS, PaaS, or cloud environment #DTR About Us: GE (NYSE:GE) drives the world forward by tackling its biggest challenges. By combining world-class engineering with software and analytics, GE helps the world work more efficiently, reliably, and safely. GE people are global, diverse and dedicated, operating with the highest integrity and passion to fulfill GE’s mission and deliver for our customers. www.ge.com GE offers a great work environment, professional development, challenging careers, and competitive compensation. GE is an Equal Opportunity Employer at http://www.ge.com/sites/default/files/15-000845%20EEO%20combined.pdf . Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. Locations: United States; California; San RamonGE will only employ those who are legally authorized to work in the United States for this opening.