Job description 

IT Security, Sr StaffThe Engineering Excellence Group drives innovation velocity and enterprise infrastructure automation, which are critical elements of our growth and scaling strategy. This team is chartered to drive significant productivity, robustness, agility, and time-to-market advantage in the creation of Synopsys products and solutions. The group also leads corporate infrastructure transformation as we continue to drive IT operations leadership and invest in the next wave of disruptive technologies.
 

Key Roles & Responsibilities:

• Lead and manage IT security-related programs and initiatives, ensuring alignment with cross-functional stakeholders, organizational goals, industry best practices, and regulatory requirements.
• Maintain vulnerability management processes and policies using a risk-based priority methodology.
• Collaborate with cross-functional teams, including IT, engineering, product, legal, and compliance, to integrate security requirements into business processes and the product development lifecycle.
• Manage the planning, execution, and delivery of IT and security projects, ensuring adherence to timelines, budgets, and quality standards.
• Define and track key security metrics and performance indicators to measure the effectiveness of security programs and initiatives, such as vulnerability management, incident management, change management and others.
• Guide and implement security best practices throughout the Software Development Lifecycle (SDLC).
• Develop, evaluate, and endorse security architectures, aligning them with organizational goals and industry standards.
• Design security frameworks for emerging technologies across diverse platforms and environments.
• Monitor and integrate advancements in cyber security to refine our architectural practices.
• Identify and implement opportunities for process automation and improvement.
• Lead overarching security architecture projects.

Required Skills

• Extensive experience with Vulnerability Management Scanning Tools (e.g., Qualys, Rapid7, Tenable, Wiz, etc.)
• Understanding and experience with Federal, PCI Compliance and Security Frameworks such as NIST and CIS.
• Familiarity with Containerization Solutions (e.g., Docker, Kubernetes, etc.)
• Extensive experience with Infrastructure, Cloud, and Risk Assessment
• Fundamental understanding of Systems and Network Engineering
• Demonstrated experience and success with completion of risk assessments and vulnerability assessments.
• Experience in conducting vulnerability scans and knowledge of industry standard scoring models such as CVSS, CCSS
• Operationalizing MITRE Attack & TTPs in vulnerability prioritization
• Demonstrated experience and success with development and promulgation of enterprise-class security policy and standards.
• Strong familiarity with OWASP Top 10, SANS/CWE Top 25 software security vulnerabilities
• Strong knowledge across the technology stack such as web protocols, multiple operating systems, hypervisors, and distributed systems architecture.
• Extensive experience in infrastructure and cloud security, including best practices in cloud environments such as AWS, Google Cloud Platform, OCI, or Azure.
• Strong foundation in network security and infrastructure.
• Experience and hands on knowledge of Identity Access management security controls.
• Experience as a multidomain security SME.

Experience & Education

• 15+ years of experience in cyber security including Vulnerability Management for Corporate and/or Cloud Systems
• Masters/bachelor’s degree in information security, Computer Science, or related field, with 12+ years of focused experience in information security architecture.
• Proficiency in security assessments, application architectures, data center security and integrating security within the SDLC framework.
• Familiarity with IT Audit lifecycle and frameworks.
• Mastery of cloud security concepts.
• Experience conducting vulnerability assessments, code reviews and penetration tests against system and application technologies, services, platforms, and languages to find flaws and exploits.