Product Security Architect

Wind River Systems is seeking an experiencedSoftware Product Security Architect to join the R&D Security Office to scale trust in our product security to meet increasing business and security technology needs. This position will join a mature product security team and architect and mobilize product security trust initiatives, manage customer product security trust, and contribute to product security incident response (PSIRT) and vulnerability management.

HOW YOU WILL CONTRIBUTE In your daily job you will: Work and collaborate with customer, product, engineering, and operations teams to ensure high levels ofproduct security trust with a scalable, compliance-driven mindset, across all products Architect the product security trust roadmap and scale the compliance framework to meet emerging and future business priorities. Empower product security compliance frameworks across engineering and aligned to the CTO Office, Product Management, IT, Legal, InfoSec, and SecOps. Empower product security champions throughout product engineering. Manage customer product security trust and compliance. Training, mentoring, and supporting development teams to followsecure developmentvalues, principles, and practices.

Direct experience with product security assurance techniques including Threat Modeling, Security Testing, Vulnerability Management, Software Composition, etc. Experience in software engineering models and techniques. Experience empowering security compliance broadly across an organization. Broad-based experience with global security regulations, frameworks, and standards. Exposure to customer compliance and remediations (Questionnaire's, Audits, Contracts, etc.) Ability to analyze and think quickly and to resolveconflict. Strong communication, interpersonal,and mentoring skills. Ability to work effectively across the organization. Ability to adapt to a changing environment., Bachelor's degree in engineering, computer science, information technology or similar field with 14 years of experience in software development, security engineering, and/or compliance. Master's Degree is preferred and 12 years of related experience. Preferred is a certified security professional (CSSLP, CISM, CISSP, CEH, or similar). Direct experience mobilizing one or more security standards/certifications/models like OWASP SAMM, IEC 62443, ISO 21434, NIST 800-218, FIPS 140-3, DISA STIG, Common Criteria, CMMC, FedRamp, etc. Practical experience with the NIST 800 series of security standards, including 800-53, 800-171, and others. Experience mobilizing secure software development techniques across an organization such as training, workshops, or similar. Demonstrated experience using agile techniques and frameworks to deliver secure software. Excellent verbal and written, management level and customer communicationskills. Preferred experience with the European Union (EU) security regulatory environment including the Cyber Resilience Act (CRA). Preferred experience with national security systems and standards (CNSS, etc.). Preferred working knowledge of risk management frameworks and risk-based secure software development. Preferred experience with AI and Machine learning and their governance and provenance in a secure software development environment. Preferred working knowledge of related quality and safety assurance standards such as ASPICE, ISO 26262, or DO-178C.

Hybrid work model for workplace flexibility Comprehensive health, dental, and life insurance Short and long-term disability coverage RRSP matching for financialsecurity Flexibletime-off policies for work-life balance Employee assistance program for mental well-being Learning benefits, including a LinkedIn Learning subscription and seminars, The annual base salary range for this role's listed grade level is currently $146,000 to 210,00 plus bonus, or $180,000 to $230,200 plus a bonus for MA, NYC, CO, WA and CA residents. Salary ranges are determined through interviews and a review of the education, experience, knowledge, skills, location, and abilities of the applicant,... For full info follow application link.

Wind River is a global leader in delivering software for mission-critical intelligent systems. For more than four decades, the company has been an innovator and pioneer, powering billions of systems that require the highest levels of security, safety, and reliability. Wind River helps customers across automotive, aerospace, defense, industrial, medical, and telecommunications industries solve complex technology challenges on their journey toward the new intelligent machine economy. The company's software powers generation after generation of the safest, most secure systems in the world. Examples include playing a key role in NASA space missions such as Artemis I, the James Webb Space Telescope, and multiple Mars rovers. We've achieved recent 5G milestones including the world's first successful 5G data session with Verizon and building one of the largest Open RAN networks in the world with Vodafone. The company has received industry recognition for its technology innovation and leadership, and for its workplace culture, including global Great Place to Work certification and being named a "Top Workplace" for ten consecutive years. If you want to be part of a unique culture where the lived experience is based on our cultural attributes of growth mindset, customer-focus, and diversity, equity, inclusion & belonging, come join us and help advance the future software defined world.