Product Security Senior Manager

Product Security Senior Manager (Job Number: R0230956)

Overview: Grow and develop Booz Allen’s Product Security practice, part of the Commercial Team. Define the Product Security team’s direction, standards, and requirements for services and solutions sold to Booz Allen Commercial customers. Collaborate with key stakeholders from the market and sales teams to help drive the sales process.

Responsibilities: In addition to helping to enable business development, you will also be helping to deliver across client projects where you will be responsible for conducting interviews with business and technology leaders, key client stakeholders, supporting engagement managers, developing strategies, and presenting findings. Educate and influence client software and product engineering teams on cybersecurity best practices. Assist clients in establishing Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) relevant to their product and market goals around cybersecurity assurance.

Work proactively with leaders across all levels to design, implement, and support solutions that ensure clients have a secure-by-design and best practice approach across the full product development life cycle. Lead, hire, and inspire teams of Product Security Engineers and Architects to perform security posture assessments of development and operational systems, provide recommendations and remediation plans, and implement tools, technologies, and processes that enhance the security of applications and products.

You Have:

• 8+ years of experience leading teams in a Product, Application, or Software Security field
• 5+ years of experience with application development and developing, architecting, and implementing software security solutions
• 3+ years of experience working on securing embedded systems, physical products, or hardware environments
• Experience with managing across SDLC, including vulnerability management considerations and modern development tools and frameworks
• Experience with the integration of common products and application security technologies and solutions into production environments
• Experience developing and securing software with code scanning tools and CI/CD pipelines
• Knowledge of OWASP Top 10 Vulnerabilities and prevention techniques and technology, security, risk, and compliance best practices
• Ability to travel up to 50% of the time
• Bachelor's degree in Computer Engineering, Computer Science, or Electrical Engineering

Nice If You Have:

• Experience designing and implementing anti-tampering protections for products
• Knowledge of reverse engineering and penetration testing techniques
• Knowledge of common security frameworks, including OWASP and NIST
• Ability to create collaborative relationships with colleagues and influence without authority

Compensation

Salary at Booz Allen is determined by various factors, including location, the individual's particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $ to $ (annualized USD). This posting will close within 90 days from the Posting Date.

Identity Statement

As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

Work Model

Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely. If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility. If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.