Dotmatics is seeking a Product Solution & Security Officer to safeguard its products and services by overseeing and enhancing their security throughout their lifecycle, mitigating security risks, ensuring compliance, and implementing best practices.
Requirements
- Advanced expertise in identifying information security risks through source code review and secure interaction between code, libraries, languages, APIs, database, and core platform infrastructures (e.g. Tomcat, Java).
- Driving secure-by-design principles throughout the product lifecycle to mitigate vulnerabilities and ensure product integrity.
- Expert hands on knowledge of modern techniques of secure networking and communications in public cloud environments.
- Advanced knowledge OWASP SAMM v2.0 frameworks
- Monitoring and adhering to Cybersecurity Regulatory standards including Executive Order 14028, EU CRA, NIS 2.0, AI Act, and demonstrated means to stay up to date with regulatory changes
- Detailed understanding of security principles, practices, and technologies.
- Expert hands on experience with security assessment tools and methodologies.
Responsibilities
- Develop and implement Product Solution Security (PSS) Strategy for respective Organisational Unit which is in line with the Product Solution Security (PSS) and the strategy of the respective business.
- Guide the Product Solution Security Engineers (PSSE) of Organizational Unit, in a matrix environment
- Be responsible for PSS information exchange between the respective Business Unit and Country Business Units.
- Provide regular PSS status updates including; PSS Maturity and risk reports to the Product leadership and the Chief PSSO.
- Deliver on continuous improvement of Product Solution Security (PSS) Maturity
- Conduct security assessments, business impact analysis and vulnerability management on products.
- Collaborate with product development teams to integrate security into the design and development processes.
Other
- 12+ years experience in product security, cybersecurity, or a closely related role
- Hold relevant certifications (e.g., CISSP, CISM, CEH) or degrees (BS or MS in Computer Science, Information Security, or closely related).
- Excellent problem-solving and analytical skills
- Advanced communication and interpersonal skills including both technical and executive audiences.
- Proven ability to work effectively across multiple internal departments and Customer teams.
