Sr Engineering Manager – Product Vulnerability Management

Sr Engineering Manager – Product Vulnerability Management

Requirements

• 10 years experience as an engineering manager or technical project lead.
• 10 years experience in Product Security, Application Security, or Software Development roles.
• 6 years of programming in languages such as Python, Java, C++, or Go, and the ability to identify and remediate security issues in code.
• Expert understanding of risk management principles and popular regulatory requirements (e.g., FEDRAMP, HIPAA, SOC 2) and how they impact security and software development.
• Deep analytical and problem-solving abilities to address sophisticated security challenges at scale.
• Master’s degree in Computer Science or equivalent work experience.

Responsibilities

• Identify emerging code vulnerability trends and research real-world attack patterns to stay ahead of evolving security threats.
• Design and implement sophisticated security mechanisms that protect Splunk’s products from vulnerabilities and attacks.
• Work closely with Product Development, Product Security, Risk, and Compliance teams to ensure security is woven into every phase of the software development lifecycle.
• Contribute to crafting Splunk’s security strategy by integrating secure coding standards and vulnerability management into the product pipeline.
• Ensure Splunk remains proactive and aligned with the latest policy and regulatory requirements.

Preferred Qualifications

• Familiarity with threat modeling techniques.
• Experience implementing security tooling and automation within software build pipelines.
• Proven track record to work effectively in cross-functional teams to implement security practices.
• Security certifications such as CompTIA Security+ or GIAC Security Essentials.