Product Security Program Manager

Job Title: Product Security Program Manager

Job Summary:

Join Ribbon Communications as we launch our innovative "Security as a Service" offer, designed to help our customers manage security risks in their networks. As the “Security as a Service” Project Manager, you will collaborate with Product teams across our portfolio, bridging the gap between our customers and our technical experts. Your role will be pivotal in ensuring the successful delivery of our security solutions, from identifying and risk assessing vulnerabilities and how they could impact our customers, to implementing robust security measures. This is a unique opportunity to shape a new service offering and make a significant impact on our customers' security posture.

Key Responsibilities:

• Collaborate with Sales and Account teams to understand and process customer Security as a Service requirements.
• Work closely with product teams (PLM, Development, Test) to define the scope, effort, and cost of services tailored to each customer's needs.
• Oversee deliverables with Product teams to ensure we meet our commitments and obligations to customers (hub and spoke model where you will be accountable for the service delivery, collaborating with Product teams under a different reporting structure)
• Define and implement processes and tools for this new service to ensure effective project management and tracking.
• Manage projects efficiently to ensure timely delivery of security services.
• Act as the liaison between customers and the Product teams conducting the security analysis of vulnerabilities, dealing with technical queries and escalations
• Conduct thorough research to stay current with emerging security trends and technologies, and integrate these insights to shape key responsibilities and security practices

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or related field
• At least 5 years of experience in security-related roles, such as security analyst, security engineer, or security consultant
• Strong knowledge of security frameworks, standards, and best practices, such as ISO 27001, NIST, CIS, OWASP.
• Experience with spearheading security requirements for application security.
• Solid understanding on IP networking.
• Knowledge of security protocols, PKI/X.509, Identity Management and centralized authentication (e.g. HTTPS, TLS, Radius, LDAP, SAML, OAuth, OpenID), Linux and OS hardening, API security (e.g. REST)
• Experience or familiarity with virtualized and cloud-based software architectures, including Virtualized Network Functions, Cloud-Native Network Functions, DevOps/DevSecOps methodologies, Public Clouds.
• Experience with security testing and assessment methods, such as penetration testing, vulnerability scanning, risk analysis.
• Project management and/or team leadership experience.

Please Note:

'All qualified applicants will receive consideration for employment without regard to race, age, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, on the basis of disability, or other characteristic protected by applicable law.'