An Amazing Career Opportunity for Product Security and Privacy Champion
Location: Chennai, India (Hybrid)
Job ID: 47583

Profile Summary:

As part of the Product Security and Privacy team, reporting to the Chief Product Security & Privacy Architect, you will provide hands-on support to engineering teams.

Working autonomously, you will be the go-to person for all day-to-day security and privacy related activities. Your main goal is to coach and help teams succeed in adopting the SSDL program.

You work closely with security architects, ensuring consistent quality of the program outputs and managing escalations.

You will have opportunities to work on a very wide portfolio of applications based on different technologies (Web, Embedded, Mobile, Desktop) within a very diverse and international context covering all five HID Business Areas.

About HID Global

HID Global powers the trusted identities of the world’s people, places and things. We make it possible for people to transact safely, work productively and travel freely. Our trusted identity solutions give people secure and convenient access to physical and digital places and connect things that can be accurately identified, verified and tracked digitally. Millions of people around the world use HID products and services to navigate their everyday lives, and over 2 billion things are connected through HID. We work with governments, educational institutions, hospitals, financial institutions, industrial businesses, and some of the most innovative companies on the planet. Headquartered in Austin, Texas, HID Global has over 4500 employees worldwide and operates international offices that support more than 100 countries. HID Global® is an ASSA ABLOY Group brand. HID Global has is the trusted source for secure identity solutions for millions of customers and users around the world. In India, we have two Engineering Centre (Bangalore and Chennai). Global Engineering Team is based in Chennai and one of the Business Unit Engineering team is based in Bangalore. Check us out: www.hidglobal.com and https://youtu.be/23km5H4K9Eo

LinkedIn:  www.linkedin.com/company/hidglobal/mycompany/

Are You Ready to Join the Team?
Our company is committed to finding the best and the brightest talent to help us reach the top. If you are a dynamic, highly skilled, experienced Cloud engineer and technology enthusiast, and you enjoy working in a rapid pace within a rapidly growing business environment, then you will want to consider this position. If you excel at communication, collaboration, and unrelenting innovation, we want to talk to you. And if you bring dedication, positive energy and integrity to the table, you just might be the right fit for our team.

Qualifications
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.

• Demonstrated experience facilitating security reviews/workshops or delivering training to engineering teams.
• Experience contributing to at least one Secure Software Development Lifecycle (SSDL) program, either as a security architect, security champion, or similar role.
• Working knowledge of general principles of application security.
• Working knowledge of threat modeling principles.
• Experience using security tools (SAST, DAST, SCA, Vulnerability Scanners, Secret Scanners).
• Hands-on experience in at least one, preferably more, of these application domains:
  • Embedded device Security
  • Mobile security
  • Web & API security
  • Desktop security
    
    

Roles & Responsibilities (Other duties may be assigned)

• Deliver Product Security & Privacy (PSP) controls and Threat Modeling face-to-face and virtual training sessions.
• Run PSP controls assessment working sessions.
• Facilitate threat model review sessions.
• Hands-on support in partnership with Security Architects and engineering teams focusing on enablement, facilitation, and scalable reuse in:
  • Training content creation
  • Architecture Reviews/Audits
  • Risk Management/Incident Handling/Tool Triage
  • Implementation of Reusable Patterns
  • Supply Chain Issues
  • Acquisition Onboarding / Training Delivery
  • External compliance activities, such as Cyber Resilience Act (CRA)
  • Interpretation and training on HID internal security/privacy standards and PSP controls.
  • Provide feedback and insights from engineering reality to the PSP team: what works, what doesn’t, friction points, and opportunities to improve processes, tooling, and platforms.

Preferred Qualifications.

• Cloud infrastructure, Supply Chain, and Operational Security
• Experience with Agile/SAFe Methodology.
• Experience with usage of AI tools in the context of a security program.
• At least one security or privacy certification (CISSP, CIPT, CSSLP, CEH, ...) is a plus.

Education and/or Experience

• Bachelor’s Degree or equivalent experience, computer science.
• 4+ years of total experience in software engineering and a strong affinity for product/application security.

Soft Skills

• Ability to effectively communicate complex concepts clearly and effectively in the English language, both verbally and in writing.
• Like training and knowledge-sharing, with a strong motivation to ensure the security program is successfully implemented by the teams.
• Highly adaptable and approachable, fostering collaboration and open communication.
• Ability to tailor your communication to different audiences such as product owners, development teams, architects, and other high-level users.
• Strong technical acumen with the ability to engage effectively with development teams.
• Continuous learning mindset.

Why apply?

• Empowerment: You’ll work as part of a global team in a flexible work environment, learning and enhancing your expertise. We welcome an opportunity to meet you and learn about your unique talents, skills, and experiences. You don’t need to check all the boxes. If you have most of the skills and experience, we want you to apply.
• Innovation: You embrace challenges and want to drive change. We are open to ideas, including flexible work arrangements, job sharing or part-time job seekers.
• Integrity: You are results-orientated, reliable, and straightforward and value being treated accordingly. We want all our employees to be themselves to feel appreciated and accepted.

This opportunity may be open to flexible working arrangements.

HID is an Equal Opportunity/Affirmative Action Employer – Minority/Female/Disability/Veteran/Gender Identity/Sexual Orientation.

We make it easier for people to get where they want to go!
On an average day, think of how many times you tap, twist, tag, push or swipe to get access, find information, connect with others or track something.  HID technology is behind billions of interactions, in more than 100 countries.  We help you create a verified, trusted identity that can get you where you need to go – without having to think about it.  
 
When you join our HID team, you’ll also be part of the ASSA ABLOY Group, the global leader in access solutions. You’ll have 63,000 colleagues in more than 70 different countries. We empower our people to build their career around their aspirations and our ambitions – supporting them with regular feedback, training, and development opportunities. Our colleagues think broadly about where they can make the most impact, and we encourage them to grow their role locally, regionally, or even internationally. As we welcome new people on board, it’s important to us to have diverse, inclusive teams, and we value different perspectives and experiences.

 #LI-HIDGlobal