Talent.com
Deze vacature is niet beschikbaar in je land.
Associate Digital Product Manager, Information Security (DevSecOps)

Associate Digital Product Manager, Information Security (DevSecOps)

GenmabUtrecht
30+ dagen geleden
Functieomschrijving

At Genmab, we’re committed to building extra[not]ordinary futures together, by developing antibody products and pioneering, knock-your-socks-off therapies that change the lives of patients and the future of cancer treatment and serious diseases. From our people who are caring, candid, and impact-driven to our business, which is innovative and rooted in science, we believe that being proudly unique, determined to be our best, and authentic is essential to fulfilling our purpose.

Primary Responsibilities

We are looking for an experienced and pragmatic individual for the role of DevSecOps Engineer to join our global information security team. In this pivotal role, you will be at the forefront of integrating security into every aspect of our development and operational processes. As a vital member of our team, you will work closely with developer and operation teams from other IT and business disciplines to create secure, seamless, and robust applications and infrastructure. Your expertise in various aspects of security, CI / CD pipelines, agile product development and cloud services will play a key role in advancing our security posture.

We ask our employees to be able to work independently and be result driven. But at Genmab we ask more … we ask to be part of a team that has a passion for the work and knows exactly why we are doing what we are doing. We know that our colleagues around us have the same passion and are all driven to make this company a better company. We also know that we work better as a team and are willing to take acceptable risks when required.

If you are passionate about building secure and efficient systems and thrive in a dynamic, collaborative environment, we would love to have you onboard.

Primary Contacts

  • Reports to Principal Security Officer - US
  • Global Head of IT Security & Risk Management
  • DevSecOps CoE personnel from IT Infrastructure & Operations team and IT Commercialization & Enabling Functions team
  • Principal Security Officer – DK, NL
  • Members of IT & Digital Leadership Team
  • Solution Architects
  • Scrum Masters and Product Owner from different product development teams

Responsibilities

Integrate Security in CI / CD : Implement and maintain security measures and controls in CI / CD pipelines to ensure the security of software from development to deployment.

Vulnerability Management : Regularly scan for, identify, and remediate vulnerabilities in code, dependencies, and deployed infrastructure.

Security Automation : Develop and implement automation scripts to integrate security testing and compliance checking into the development lifecycle.

Collaboration and Training : Work closely with development and operations teams to raise security awareness and develop best practices.

Cloud Security : Implement and manage security policies, controls, and best practices in cloud environments.

Continuous Improvement : Stay abreast of the latest security threats and technologies to continuously improve Genmab’s security posture.

Job Requirements

Education

Minimum of a Bachelor’s degree in computer science, information systems, engineering or related technical field or equivalent work experience. Master’s level degree preferred.

Experience

  • 5+ years of experience in DevSecOps role or similar
  • 5+ years of experience with software security, secure coding, or software assurance tools and techniques.
  • Deep knowledge and understanding of Agile & DevOps methodologies
  • Proficient with CI / CD tools (e.g., Jenkins, GitLab) and automation scripting (e.g., Python, Bash).
  • Familiarity with containerization and orchestration technologies (Docker, Kubernetes).
  • Knowledge of infrastructure as code (IaC) tools (e.g., Terraform, Ansible).
  • Solid experience with Compliance (Regulatory and Industry) and Security frameworks
  • Demonstrated experience in working in multinational organization and virtual teams.
  • Demonstrated experience of influencing key stakeholders across the organization and within complex contexts.

    • Knowledge / Skills

  • Provide strategic direction and subject matter expertise for wide adoption of DevSecOps automation.
  • Build and maintain DevSecOps pipelines to adopt shift-left paradigm for security testing (SAST, DAST, IAST, RASP etc.)
  • Develop and promote best practices for DevSecOps and secure CI / CD.
  • Stay up-to-date on new security tools & techniques, and act as driver of innovation and process maturity.
  • Perform threat modelling and design reviews to assess security implications of new code deployments.
  • Work with DevOps teams and managers to train and educate product teams on information security concepts and standards (e.g. OWASP ASVS)
  • Deliver presentation to IT and business representatives on security technologies and industry trends
  • Excellent contact skills being able to communicate effectively with different stakeholders and to deal with the different interests in the organization.
  • Excellent analytical, strategic conceptual thinking, strategic planning and execution skills
  • Ability to build consensus, making decisions based on many variables, and gain support for major initiatives.
  • Strong sense of self, ethics and effort, as well as the willingness to go the extra mile to achieve important goals.
  • Excellent verbal and written communication skills, including the ability to explain security requirements to IT leaders.
  • Strong soft and interpersonal skills, including teamwork, facilitation and negotiation

    • Working Conditions

    Travel required : Company-specific

    Domestic : Rarely

    International : Rarely

    Telecommuting option : 4 days per week

    For US based candidates, the proposed salary band for this position is as follows :

    00 $,.00

    The actual salary offer will carefully consider a wide range of factors, including your skills, qualifications, experience, and location. Also, certain positions are eligible for additional forms of compensation, such as bonuses.

    About You

  • You are passionate about our purpose and genuinely care about our mission to transform the lives of patients through innovative cancer treatment
  • You bring rigor and excellence to all that you do. You are a fierce believer in our rooted-in-science approach to problem-solving
  • You are a generous collaborator who can work in teams with diverse backgrounds
  • You are determined to do and be your best and take pride in enabling the best work of others on the team
  • You are not afraid to grapple with the unknown and be innovative
  • You have experience working in a fast-growing, dynamic company (or a strong desire to)
  • You work hard and are not afraid to have a little fun while you do so

    • Locations

    Genmab leverages the effectiveness of an agile working environment, when possible, for the betterment of employee work-life balance. Our offices are designed as open, community-based spaces that work to connect employees while being immersed in our state-of-the-art laboratories. Whether you’re in one of our collaboratively designed office spaces or working remotely, we thrive on connecting with each other to innovate.

    Maak een vacature-alert aan voor deze zoekopdracht

    Information Security Manager • Utrecht