Sr. Manager, Product Security

Product Security manager

Team and job description

Equinix is the leading global interconnection platform, accelerating business performance
by connecting companies to their customers and partners inside the world’s most networked data centers. More than 4,500 of the world’s most demanding customers trust us to provide a place where they can run their mission-critical applications and grow their businesses. Our dream is
to interconnect the world – and create a historically significant company in the process. To accomplish the vision Equinix must create an ecosystem built upon secure products. The Product Security team job is to make sure that the Equinix products are able to operate and provide services to our customers securely. We are looking for a visionary leader to manage a team of security architects who work with the various functional teams within Equinix to fortify our products & solutions.

Job Profile Summary

We are a team of highly skilled Product Security engineers that specialize in security research, penetration testing, and creative tool development focusing on data security, systems hardening, DevSecOps, threat and vulnerability management and security intelligence across network, infrastructure, tools, platforms and product layers. We evaluate a broad range of technologies including distributed processing, virtualized environments and isolation of unsecure code. As a Cloud Security Engineer, you will design and maintain a secure network for Equinix portals and API’s. You will ensure our developers have all possible solutions and knowledge to create and deliver more secure applications that operate in this secure network.

Responsibilities

People Management/ Leadership

• Manages, develops, and builds a team of skilled Product Security Engineers; identifies and fosters necessary skills in order to build the team's capability and fulfill corporate goal of Equinix

• Understands that people are the biggest asset for any organization; exemplifies the concept of servant leadership, while instilling pride in the team for their mission critical contributions

• Establishes credibility as a trusted advisor to partners including customers, executives, peers, and employees

• Partners with CISO’s & CTO’s security teams to deliver broadly impactful security initiatives

• Cultivates a culture whereby security considerations are integral to product engineering teams’ fabric.

• Models the Equinix Culture and Values

Road Map/ Planning

• Provides critical input into the strategic planning process and prioritization mechanisms

• Executes initiatives according to the roadmap that supports the organization’s strategy and priorities

Security

• Maintains strong knowledge of ongoing security threats, remediation and operational standard methodologies

• Guides the Engineering organization's security and privacy initiatives by leading design reviews and threat modeling sessions

• Performs state of the art applied research on new attacks and present new findings to both internal and external audiences

• Understands how to performs black-box penetration testing and code reviews of our services, product offerings

• Evaluates application security tools for internal consumption. Prototype new automation and tooling to improve our detection and prevention capabilities

• Participates in our incident response and vulnerability remediation efforts

Qualifications

• 10+ years of hands on professional experience, 3+ years of experience managing people

• 5+ years of experience in application security and/or DevSecOps

• Ability to work with cross functional team’s product architects, Infrastructure automation teams to choose appropriate technology solutions

• Strong expertise in secure SDLC practices, and ability to influence SDLC strategy.

• Deep understanding of Amazon Web Services (AWS) and the Microsoft Azure platforms.

• Experience with Designing and Implementing security control policies for Cloud services.

• Working knowledge of networking controls for cloud services and workloads

• Experience in writing terraform or boto3 and Ansible scripts

• Integrate IAC with DevSecOps pipelines.

• Experience in cloud migration projects is big plus.

• Working knowledge of DevOps methods and CI/CD automation practices

• Working knowledge of containerization technologies and container orchestration (Docker, Kubernetes, CRI-O)

Will be a plus

• Knowledge on compliance frameworks like FedRAMP, GDPR or PCI is big plus.

• Any security certification will be taken as a plus

• Experience with cloud

Successful candidate will

• Be a talent multiplier who gets the team around them to excel

• Be persistent, creative and driven to get results relentlessly

• Exhibit a strong backbone to challenge the status quo when needed

• Exhibit a high level of curiosity, keeping abreast of the latest trends & technologies, liking the research and finding new vulnerabilities

• Show pride of ownership and strive for excellence in everything undertaken

• Be energized by a diverse and constantly evolving environment

• Enjoy opportunities to learn new skills

At Equinix, we’re tasked with leading in the communities we serve — and doing our part to help keep our communities and our teams safe. Our #IamSafeIBelongIMatter culture transcends and informs all we do. In alignment with our culture, Equinix has implemented a vaccine or test policy that requires employees to show proof of full vaccination or get tested regularly to work onsite in an IBX or office. 

Equinix is an equal opportunity employer. All applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, or status as a qualified individual with disability.