Influence leaders of teams to elevate the priority of security controls implementation when risk is overly high and, equally, advocate on behalf of risk acceptance when risk is sufficiently low given the business opportunities under consideration
Create software prototypes and automation tools that assemble data about system weaknesses to aid in understanding the scope and breadth of risk.
Coach others in building threat models for HERE technology systems, which connect available threat intelligence to common attack techniques, and link those to their applicability to HERE systems.
Author and / or curate guidance documentation that recommends how developers and engineers may quickly harden their systems.
Who are you?
You are highly experienced technical security professional with broad scope focused on data-driven analysis of HERE’s complex technology systems to uncover systemic security weaknesses, assess the level of risk they present to HERE, and advise practical techniques or adaptations for mitigating or reducing that risk.
In this role will commonly apply data analysis, risk assessment and threat modeling techniques, and coordinate various teams in the development of mitigation solutions.
You take initiative and seek to influence improved security in teams throughout the enterprise. Furthermore :
Many years of experience securing IT systems and infrastructure
Fluency with one or more scripting or application programming languages
Direct experience with the software development lifecycle and the tradeoffs encountered therein
Examples from your experience where you used data to showcase progress and accomplishment
Ability to communicate how security principles and secure architectures help prevent intrusion and abuse of complex multi-system IT solutions
Comfort and confidence adapting communication approach to reach a variety of audiences, from non-technical business personnel to Ph.
D.-educated technology experts
Demonstrated ability to influence consensus across domains
HERE is an equal opportunity employer. We evaluate applicants without regard to race, color, age, gender identity, sexual orientation, marital status, parental status, religion, sex, national origin, disability, veteran status, and other legally protected characteristics.