Product Security Lead - Cox Mobile

Most of us grew up with big dreams about changing the world. Isn't it exciting to think that you could still have the opportunity to do just that?
The Cox Communication (CCI) Product Security team is looking for a Cox Mobile Product Security Lead to drive the next evolution in securing our mobile products to protect our customers for cyber threats. You'll provide thought leadership and be responsible for the security of the mobile product development lifecycle. You bring the talent and the ingenuity; we'll bring the technology and the great workplace environment. Ready to partner with people who care as much about your future as you do? If so, keep reading!
What You'll Do
You'll be a key part of our broader initiative: to secure our mobile product portfolio and protect our customers from cyber threats. You'll support various development teams while using a risk-centric approach. Additionally, you'll provide security consulting. Other responsibilities include:

• Supporting the release of Cox mobile products while following our product security program.
• Bringing together product development teams and cyber security to achieve a high level of cyber security quality.
• Supporting efforts to institutionalize secure product lifecycle practices.
• Institutionalize practices to identify and quantify cyber risk within our products.

• Engaging with other information security teams to create action plans based on results of product security reviews.
• Supporting initiatives to maintain a product inventory, lifecycle status, risk profile and remediation.
• Maintaining relationships with the technical product security testing teams.
• Providing insights into the maintenance of product security procedures, directives, and technology controls.
• Drive integration of Product Security Program initiatives into relevant stages of the product development lifecycle
• Ensuring information security artifacts align with industry standards or regulatory requirements.
• Providing guidance to prioritize cyber-risk remediation and mitigation activities.
• Supporting efforts to maintain and report product security metrics throughout the development life cycle.
• Maintaining current knowledge on security best practices, procedures, directives and technology controls.
• Providing training, coaching, and consultation on secure development practices to the business and product development teams.
• Communicating with business unit leadership on matters related to security risk within mobile products.

Minimum:

• A bachelor's degree in Cybersecurity, Computer Science, or related field + 6 years of relevant working experience.
• 4+ years of experience with information security controls or security risk management.
• 2+ years of experience in product development or product lifecycle management.
• Demonstrated ability to communicate highly technical concepts to non-technical audiences.
• The ability to translate business objectives into cybersecurity terms and vice versa.
• Strong knowledge of Mobile security for Android or iOS operating systems.
• Strong knowledge across the technology stack such as web protocols, multiple operating systems, hypervisors and distributed systems architecture.

Preferred:

• A master's degree in computer science, cybersecurity or a related field.
• Experience with network or mobile security.
• Experience conducting security product reviews.
• Experience creating executive level presentations.
• Experience with both automated and manual secure code reviews.
• Understanding of "secure by design" principles and secure development.
• Knowledge of current cybersecurity trends and remediation or mitigation approaches.
• Certification related to information security and privacy (CSSLP, CISSP, etc.)
• Experience releasing products that balance business objectives and technical features while mitigating cyber risk.

USD 106,700.00 - 177,900.00 per year
Compensation:
Compensation includes a base salary of $106,700.00 - $177,900.00. The base salary may vary within the anticipated base pay range based on factors such as the ultimate location of the position and the selected candidate's knowledge, skills, and abilities. Position may be eligible for additional compensation that may include an incentive program.
Benefits:
The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company's needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, parental leave, and COVID-19 vaccination leave.
About Cox Communications
Cox Communications is the largest private telecom company in America, serving six million homes and businesses. That's a lot, but we also proudly serve our employees. Our benefits and our award-winning culture are just two of the things that make Cox a coveted place to work. If you're interested in bringing people closer through broadband, smart home tech and more, join Cox Communications today!
About Cox
Cox empowers employees to build a better future and has been doing so for over 120 years. With exciting investments and innovations across transportation, communications, cleantech and healthcare, our family of businesses - which includes Cox Automotive and Cox Communications - is forging a better future for us all. Ready to make your mark? Join us today!
Benefits of working at Cox may include health care insurance (medical, dental, vision), retirement planning (401(k)), and paid days off (sick leave, parental leave, flexible vacation/wellness days, and/or PTO). For more details on what benefits you may be offered, visit our benefits page .
Cox is an Equal Employment Opportunity employer - All qualified applicants/employees will receive consideration for employment without regard to that individual's age, race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender, gender identity, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law.
Statement to ALL Third-Party Agencies and Similar Organizations: Cox accepts resumes only from agencies with which we formally engage their services. Please do not forward resumes to our applicant tracking system, Cox employees, Cox hiring manager, or send to any Cox facility. Cox is not responsible for any fees or charges associated with unsolicited resumes.