This is a remote position. Candidate can be located anywhere within the United States.
POSITION SUMMARY
The Director of Product Security will be a key leader in our company, overseeing all aspects of our cybersecurity initiatives and leading all DoD compliance efforts. This includes the creation of Security Technical Implementation Guides (STIGs) for our Rancher Government portfolio, particularly focusing on k3s. The role demands a robust understanding of Kubernetes technology and a strong background in cybersecurity, especially in environments serving the DoD.
DUTIES AND RESPONSIBILITIES
- Develop and implement comprehensive security strategies that align with DoD requirements.
- Oversee the management of security protocols, policies, and procedures, including the creation of STIGs for the Rancher Government portfolio.
- Lead DoD compliance initiatives and ensure alignment with all relevant regulations and standards.
- Conduct regular security assessments and audits to identify vulnerabilities.
- Lead incident response and recovery operations in the event of a security breach.
- Collaborate with engineering teams to integrate security measures into Kubernetes solutions and ensure compliance in the development lifecycle.
- Stay updated with the latest security trends, threats, and technologies.
- Train and mentor security team members and foster a culture of security awareness.
- Manage relationships with external security agencies and vendors.
- Other duties as assigned.
QUALIFICATIONS
- Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or a related field.
- Minimum 3 years of professional experience managing, securing and orchestrating containers (Kubernetes) in production environments.
- Minimum of 6 years of experience in cybersecurity, with at least 2 years in a leadership role.
- Proven experience in developing STIGs and leading DoD compliance initiatives.
- Strong knowledge of Kubernetes, particularly k3s, and containerization technologies.
- Familiarity with DoD security regulations and compliance standards (e.g., NIST, FedRAMP).
- Experience in conducting security audits and vulnerability assessments.
- Excellent leadership and team management skills.
- Strong communication and interpersonal abilities.
- Ability to think strategically and solve complex problems.
- Active security certifications (e.g., CISSP, CISM, CEH) are preferred.
