Are you an experienced, security leader with a passion for delivering great, secure software products in a fast-paced environment? If so, SolarWinds has an opening for a Director, Security Engineering that might be a good fit for you.
SolarWinds provides powerful and affordable IT management software. Our products give organizations worldwide—regardless of type, size, or complexity—the power to monitor and manage their IT services, infrastructures, and applications; whether on-premises, in the cloud, or via hybrid models. Our focus on the user and commitment to excellence in end-to-end hybrid IT management has established SolarWinds as a worldwide leader in solutions for network and IT service management, application performance, and managed services.
Our ability to serve these customers is dependent on our ability to earn their trust by shipping software designed, engineered and tested with security in mind. This role will have an opportunity to reshape how SolarWinds builds its products and to build a product security function that will have massive impact across the industry.
Responsibilities
The Director, Security Engineering is responsible for ensuring the security of all software applications that are created by SolarWinds by leading two teams, Security Engineering and Vulnerability Management. The Security Engineering team prevents security vulnerabilities by hunting for security issues, building tools and libraries to prevent common flaws and ensuring that security is designed into our products. The Vulnerability Management team identifies and remediates security issues to minimize risk to our customers while maintaining relationships with external security researchers.
Security Engineering
Promote a culture of security across the R&D organization through training, process improvements and department-wide security goals
Ensure that all software products are Secure by Design through reviews of security architecture and code reviews
Lead penetration testing efforts of internal security engineers and world-class, third-party firms
Develop hardened libraries and tooling that are used by all engineering teams at SolarWinds
Deploy and customize code scanning tools to detect potential flaws early in the engineering process
Perform security reviews of M&A targets during the due-diligence process
Review and approve third-party libraries and software that are used by the R&D team
Vulnerability Management
Manage security vulnerabilities from reporting to resolution which includes quantifying risk, scheduling fixes with engineering teams, internal reporting and external disclosure
Ensure that lessons-learned from discovered vulnerabilities lead to improvements in software engineering and security processes
Build and manage a vulnerability disclosure process across all SolarWinds products while facilitating a productive relationship with the security research community
Leadership
Supervise, mentor and grow members of the Security Engineering team
Drive all aspects of recruiting including attracting, building and retaining a highly skilled Security Engineering team
Effectively collaborate with multiple business teams (Product Management, Engineering, Support, Sales Engineering, IT and Security Operations)
Communicate priorities and vision to product development teams and executive leadership
Qualifications
Required Skills
Extensive experience and knowledge of at least two of these areas: Security engineering, software engineering, application security, vulnerability management, cryptography, security protocols, Agile development methodologies
Prior experience directing a technical team including a history of developing leadership
Skills and Experiences that We Value
Experience with designing, developing and shipping commercial software
Demonstrated creativity, problem solving, and intelligent thinking
Programming experience in Java, C#, Go or C++
Understanding of IT technologies (networking, virtualization, systems management, etc.)
Willingness to travel internationally on occasion
Excellent communication and organizational skills
This position reports to SVP, Research and Development
SolarWinds is an Equal Employment Opportunity Employer. SolarWinds will consider all qualified applicants for employment without regard to race, color, religion, sex, age, national origin, sexual orientation, gender identity, marital status, disability, veteran status or any other characteristic protected by law.