Senior Director, Application and Product Security

Employment Type

: Full-Time

Industry

: Information Technology



The Senior Director, Application Security leads a team of deeply technical security and technology professionals to ensure the trust of the DocuSign product.  The Senior Director – Application Security is both a security thought leader partnering with product and engineering to architect and build secure products as well as an operational leader focused on scaling application security tools and best practices across the company. The Senior Director – Application Security has an established record of accomplishment, demonstrates subject area mastery and leads a functional team in an area of application security.  The team has both proactive and reactive responsibilities.  Proactively, they engage with engineering to architect and build secure product while also working to identify and remediate exiting product vulnerabilities (in partnership with engineering). The role serves as the Application Security department lead with both direct and indirect leadership responsibilities across DocuSign. The role is strategic, requiring broad mastery of cyber security, and cyber tools within a complex, rapidly growing environment. The role interfaces extensively with executive leadership on product security priorities, business and technology investments, and key business strategies, providing expert advice on product security and risk implications across DocuSign.  This position is engaged in product related security incidents or third-party vulnerabilities as needed.  This position will also interface directly with DocuSign clients on cyber security topics.

This position reports to the Chief Trust and Security Officer.

Responsibilities

Demonstrated success in leading technical teams in a heterogeneous environment (e.g. on premise, cloud, SaaS)
Ability to communicate clearly and professionally with all levels of an organization as well as with clients.
Excellent verbal and written communication skills.
Proficiency in multi-tasking and prioritizing projects.
Working knowledge of common industry cybersecurity requirements and regulatory requirements such as: HIPAA, HITRUST, ISO 27001, NIST 800-53, and PCI-DSS;
Currency with industry trends and the latest Information Security practices and standards to ensure effective use of technology.
Demonstrated track record of effective cross-organizational project and program leadership.
Demonstrated track record of effective cyber security leadership in rapid growth environment
Excellent communication and interpersonal skills. Including a strong ability to create positive and professional business relationships with product, engineering and architecture teams.
Strong commitment to talent development, training and coaching to acquire and retain key security talent. 

Basic Qualifications

Bachelor’s Degree in technology or other related field from an accredited university or college; or equivalent work experience in Information Security and Business/Risk Management
Minimum of 12 years of experience working in Cyber Security, Information Security and/or Application Security and Architecture.
Minimum of 8 years’ experience in people management

Preferred Qualifications

Advanced security certifications or equivalent formalized training
Experience in managing and developing new products and services
Professionalism, sensitivity, discretion and sound decision-making skills allied with the ability to interact at senior executive level are essential
Ability to prioritize and multitask well under pressure
Excellent written and oral communication skills
Proven leadership capabilities of integrity, self-discipline, building an environment of trust and courage
Strong experience managing a team in a fast-paced environment and leading as an individual contributor
Ability to deal with high volume work and multitasking
Knowledge of network security architecture concepts, including topology, protocols, components, and principles (e.g., application of defense-in-depth)
Ability to interpret and translate customer requirements into operational actions
Skill in conducting capabilities and requirements analysis
Knowledge of organizations risk tolerance and/or risk management approach


Launch your career - Create your profile now!

Create your Profile

Loading some great jobs for you...