Security Research & Engineering Lead

Job Details:

Job Description: 

You will be managing a team of experts dedicated to evolving our product architecture. Enabling it to be sold to highly secured organizations, focusing on the Secure Development Lifecycle program. You will collaborate with multiple development and operational teams to seamlessly develop and integrate security measures into the design and development of our products and applications. This role includes design, execution, and leadership.

Your responsibilities as a product security manager will include the following and not only:

• Define and lead implementation of the organization SDL process and in product security assurance
• Conducting security-centric design assessments for applications, systems, and networks
• Developing/reviewing threat modelling, performing security architecture, secure design and secure code reviews when necessary
• Collaborating with development and infrastructure teams throughout the company to aid in the resolution of identified issues
• Guiding and assuring development teams acting within the requirements of secure design and secure development best practices
• Working with the organization leadership to provide visibility and assessment of the product and commercial readiness
• Working as a Hands-on development and technical work
• Supporting efforts to interpret compliance standards
• Working with all key stakeholders to identify, document, fix, and communicate compliance-related concerns
• Offering guidance and addressing inquiries about security best practices
• Mange the security infrastructure, DevSecOps and security validation domains

Qualifications:

To be successful in this role you will need:

• 8-10 years of relevant experience in Security Engineering and Team leadership experience
• Experience with comprehensive application security architecture, HW, embedded FW and SW products
• Experience deploying and doing SDL at organization level
• Experience with problem-solving and analytical skills
• Experience with various security tools (e.g., Wiz, Snyk, Trivy, Black Duck, Coverity, Burp, Fortify, etc.)
• Experience in one or more programming languages (C/C++, Python, Golang, Linux shell,...)

Advantage:
CISO's role in an organization is to set security protocols to protect its data and intellectual property. Additionally, they must investigate cyber security threats and information breaches and tackle them according to safety protocols.
a) Develop and implement policies and procedures regarding Information Security
b) Manage the security operations and responses in case of an incident
c) Conducts assessments of risks and vulnerabilities in the work systems
d) Oversee the security training initiatives
The CISO is also usually responsible for information-related compliance (e.g. supervises the implementation to achieve ISO/IEC 27001 certification for an entity or a part of it).
Computer emergency response team/computer security incident response team
Cybersecurity
Disaster recovery and business continuity management
Identity and access management
Information privacy
Information regulatory compliance (e.g., US PCI DSS, FISMA, GLBA, HIPAA; UK Data Protection Act 1998; Canada PIPEDA, Europe GDPR)
Information risk management
Information security and information assurance
Information security operations center (ISOC)
Information technology controls for financial and other systems
IT investigations, digital forensics, eDiscovery
e) Ensure the safety protocols in place are in alignment with the laws and regulations

          

Job Type:

Experienced Hire

Shift:

Shift 1 (Israel)

Primary Location: 

Israel, Haifa

Additional Locations:

Israel, Petah-Tikva

Business group:

The mission of the Emerging Growth and Incubation (EGI) group is to create an environment to identify, incubate and scale new billion-dollar businesses leveraging Intel's competitive advantages. EGI is a fast paced, dynamic and startup-like organization that is responsible for incubating new ideas within Intel. We have over 1500 employees globally. Our portfolio includes HW, SW, Solutions and SaaS businesses.

Posting Statement:

All qualified applicants will receive consideration for employment without regard to race, color, religion, religious creed, sex, national origin, ancestry, age, physical or mental disability, medical condition, genetic information, military and veteran status, marital status, pregnancy, gender, gender expression, gender identity, sexual orientation, or any other characteristic protected by local law, regulation, or ordinance.

Position of Trust

N/A

Work Model for this Role

This role will be eligible for our hybrid work model which allows employees to split their time between working on-site at their assigned Intel site and off-site. * Job posting details (such as work model, location or time type) are subject to change.