As a Head of Product Security and reporting directly to the Global CISO, you will play a critical role in leading our Product Security Pillar and driving the implementation of a secure product lifecycle within Adevinta. This position requires strong technical expertise in application security and leadership and managerial capabilities to oversee a team of engineering managers and security staff.
The role is open in all our Technical Hubs: Paris, Amsterdam, Barcelona and Berlin (plus Milan).
What you’ll do
Lead the Product Security Pillar: Oversee and provide strategic direction to the Product Security Pillar, ensuring alignment with organisational goals and security best practices.
Team Management: Directly manage a team of three managers and indirectly oversee a team of more than 10 security staff, fostering a collaborative and high-performing environment. Provide guidance and mentorship to enhance team members' skills and expertise.
Collaboration and Stakeholder Management: Collaborate closely with product engineering and platform teams, to drive security initiatives and ensure alignment with business goals.
What the Product Pillar includes
Application and Platform Architecture: Collaborate with product development teams to embed security into the application and platform layer.
CI/CD Security Integration: Drive the integration of security practices within the CI/CD processes.
Bug Bounty Program: Manage and enhance the bug bounty program, overseeing the triage and remediation process for identified vulnerabilities.
Vulnerability Management Support: Support product teams in vulnerability management processes, including analysis, prioritisation, and remediation.
Training and Awareness: Develop and deliver comprehensive training programs for developers and product owners.
Who you are
You have a Bachelor's degree or higher in Computer Science, Information Security, or a related field.
You have 7+ years of experience in developing and managing cyber security programs, budgets and resource allocation.
You have proven experience in product security, secure software development, or related roles.
You have strong leadership and managerial skills, with experience in managing teams and driving results.
You have in-depth knowledge of application and platform architecture, secure coding practices, and cloud security (in AWS).
You have experience in integrating security practices within CI/CD processes.
You have excellent communication in English (spoken and written) and great interpersonal skills, with the ability to engage and influence stakeholders at all levels.
You have strong analytical and problem-solving abilities, with a proactive approach to identifying and mitigating security risks.
You have up-to-date knowledge of industry standards, regulations, and emerging trends in application security.
Please submit your CV in English.
- An attractive Base Salary.
- Participation in our Short Term Incentive plan (annual bonus).
- An excellent Equity program. This role plays a key part to the success of the organisation and therefore you will receive a piece of Adevinta every 6 months.
- Employee Stock Purchase Program with a match from Adevinta.
- Work From Anywhere: Enjoy up to 20 days a year of working from anywhere! Maybe not from the moon - well why not! just make sure you have internet connection!
- A 24/7 Employee Assistance Program for you and your family, because we care.
- Win together, lose together is one of our key behaviours. At Adevinta you will find a collaborative environment with an opportunity to explore your potential and grow.
On top of these, we also provide a range of locally relevant benefits. Wanna know more? Apply and ask our recruiters!