HP Director/Sr Director Platform Ecosystems Security 

United States, Washington, Vancouver 

128319950

Director/Sr. Director, Platform and Ecosystems Security

Description -

1. Improving the security maturity of manufacturing and operational technology (OT) while reducing supply chain risks.

2. Enhancing device security and meeting regulatory standards to maintain a competitive advantage.

3. Strengthening the security maturity of web applications, AI technologies, and cloud platforms.

The Role:

• Oversee the planning, execution, and management of security architecture, secure coding, and application security activities across the chip-to-cloud platform.

• Manage team dynamics to attract, engage, and develop outstanding engineers through recruitment, mentoring, and training.

• Collaborate with cross-functional teams to create a strategic vision and roadmap for security systems and product suites.

• Establish a security architecture vision with relevant standards and frameworks.

• Implement and manage SAST, DAST, and penetration testing tools to enhance code and application security.

• Use security-by-design frameworks to integrate security controls that ensure confidentiality, integrity, and availability.

• Improve architectural governance for better transparency and quality of design activities.

• Develop and enhance the application security program.

• Define and implement security requirements for cloud-based applications.

• Strengthen data protection strategies throughout its lifecycle.

• Codify security principles and standards across the organization.

• Oversee planning and implementation of security controls for compliance with regulations.

• Promote DevSecOps practices and a shift-left approach to security.

• Lead initiatives in manufacturing/OT security and firmware security.

• Collaborate with product management and owners to execute on strategic visions and software roadmaps.

• Provide leadership and direction to achieve project milestones and deliverables.

Qualifications:

• Bachelor's degree or equivalent industry experience, post Graduate degree a plus
• 10+ years of experience leading security teams, including 5+ years of experience in managing managers and teams.
• 10+ years of work experience architecting, developing, and launching product security programs and/or services; in-depth knowledge of system design and architecture and experience implementing a wide range of solutions
• Strong engineering experience is also essential to ensure that architectures can be successfully implemented while factoring in ease of integration, operational overhead and user experience
• Solid understanding of security protocols, cryptography, authentication, authorization, and security controls
• Cloud experience a must, preferably with multiple cloud providers (preferably AWS & Azure)
• Experience setting up secure build pipelines, CI/CD and familiarity with modern secure development practices and solutions (e.g., Jenkins, Gitlab, Bitbucket, etc.)
• A service-oriented mentality while driving excellence across the organization
• Strong organizational skills, both for yourself and the team
• Business acumen: Proven understanding of business dynamics, goals, and product strategy. Knowledge of how Security fits into HP’s overall business
• Excellent interpersonal skills with the ability to communicate effectively verbally and in writing with all levels within the organization, including both technical and non-technical personnel
• Certified in one or more of the following: CRISC, CISA, CISM, CISSP, SANS GIAC Security Certifications, ITIL, ISO27001

Our compensation reflects the cost of labor across several U.S. geographic markets, and we pay differently based on those defined markets. The typical base pay range for this role across the U.S. is

Data & Information Technology

Full time

No shift premium (United States of America)

-

Please be assured that you will not be subject to any adverse treatment if you choose to disclose the information requested. This information is provided voluntarily. The information obtained will be kept in strict confidence.