about 2 hours ago
Base Salary
$185k - $230k/yr
Responsibilities
- Lead the Security Incident Response Team (PSIRT) as the single point of accountability for vulnerabilities.
- Coordinate with cross-functional teams to drive fixes to closure across various departments.
- Establish and manage the Coordinated Vulnerability Disclosure (CVD) program.
- Set SLAs, metrics, and playbooks for security advisories.
- Assess the existing security landscape and establish relationships with key stakeholders.
- Manage response operations and track key performance metrics.
Requirements
- 7+ years in security engineering with at least 4 years leading a PSIRT or product security function.
- Experience with connected hardware is highly preferred.
- Demonstrated ownership of the FIRST PSIRT Services Framework.
- Hands-on experience as a CVE Numbering Authority (CNA) or leading technical onboarding.
- Deep knowledge of relevant ISO standards and CVD guidelines.
- Strong technical understanding across product security domains.
Benefits
- Flexible PTO and 11 company holidays.
- Fully-paid health benefits including Medical, Dental, and Vision.
- 12 weeks of 100% paid parental leave.
- $50,000-lifetime maximum benefit for fertility and family-related expenses.
- Mental health benefits through Spring Health.
- $150 monthly WFH stipend and $300 annual productivity stipend.