Head of Security Testing
Krakow, Poland
Motorola Solutions
Motorola Solutions bietet innovative sicherheitskritische Kommunikationslösungen und -services für Behörden und Organisationen mit Sicherheitsaufgaben sowie Unternehmen.Company Overview
At Motorola Solutions, we're guided by a shared purpose - helping people be their best in the moments that matter - and we live up to our purpose every day by solving for safer. Because people can only be their best when they not only feel safe, but are safe. We're solving for safer by building the best possible technologies across every part of our safety and security ecosystem. That's mission-critical communications devices and networks, AI-powered video security & access control and the ability to unite voice, video and data in a single command center view. We're solving for safer by connecting public safety agencies and enterprises, enabling the collaboration that's critical to connect those in need with those who can help. The work we do here matters.
Department Overview
Company OverviewOn any given day, every moment matters to someone, somewhere. And every moment, Motorola Solutions’ innovations, products and services play essential roles in people’s lives. We help firefighters see around buildings and police officers see around street corners. We keep utility workers connected and visible to each other with real-time voice and data communication across the smart grid. And we provide the situational awareness first responders need when a moment brings catastrophe. We help people be their best in their moments that matter.
Department Description
This is an opportunity for you to use user cybersecurity skills to protect the people that protect us. Our customers are first responders. Fire, police, and paramedics; 911 call takers and 911 dispatchers. And when we or our loved ones place that 911 call, we become the customer of our customers. We want that call to be answered, and we want the communications between the dispatcher and the first responder to be available. But what if that 911 call center, or the communications link to the responders in the field, were under attack? What if you or your loved ones' call to 911 went unanswered, or they were unable to dispatch paramedics to your location, because they had been taken down by ransomware? This is not just theoretical; it is happening. First responders and 911 call centers are under attack around the globe, and this is a chance to fight back.
Job Description
Your Responsibilities
Responsible for executing on and implementing an application security strategy targeting security testing and DAST best practices across various technology stacks and development methodologies.
Lead and oversee our Web Application Firewall (WAF) team.
Responsible for creating and implementing a vulnerability scanning strategy
Promote and advocate for a collaborative and security focused culture among all developer communities globally.
Interface with development teams to provide guidance and enablement on various secure software development life-cycle (SDLC) activities, especially security validation and testing of web and mobile applications to ensure products meet internal and industry standards and requirements.
Deliver training and support to development teams on various SDLC and security testing topics.
Collaborate with other teams and stakeholders to accomplish shared objectives
Strong team player with the ability to work with a geographically dispersed team
Engage with business leads and senior-level stakeholders to educate, consult and socialize application security initiatives and practices.
Define, develop and deliver application security training and awareness materials.
Basic Requirements
Background
Bachelor’s degree in a related field or equivalent work experience
3 - 5 years experience in relevant field
Specific Knowledge and Skills
Strong background in working with DAST and other Vulnerability Management scanning security testing tools
Excellent written and oral communication skills.
Excellent interpersonal, planning, and organizational skills.
Experience with organizational change management
Ability to multi-task with a strong sense of urgency; ability to meet deadlines
Ability to concisely illustrate concepts in words and diagrams
Ability to research and learn new topics and become functional with them quickly.
Comfortable working with remote team members and geographically dispersed teams.
Strong background in software development and modern programming languages (Java, C#, Python, Node.JS, Go)
Knowledge of common application vulnerabilities (e.g. OWASP Top 10), attack techniques and remediation tactics/strategies.
Experience with current DevOps methodologies and practices (CI/CD)
Proficient in delivering and speaking to technical concepts to a wide variety of audiences.
Knowledge of cybersecurity and secure coding principles and best practices
Knowledge of application security threats and vulnerabilities (e.g., buffer overflow, cross-site scripting, injections, race conditions, replay, return-oriented attacks, malicious code)
In return for your expertise, we’ll support you in this new challenge with coaching & development every step of the way.
Also, to reward your hard work you’ll get:
Competitive salary package
Private medical & dental coverage
Employee Pension Plan
Life insurance
Employee Stock Purchase Plan
Flexible working hours
Strong collaborative culture
Comfortable work conditions (high-class offices, parking space)
Volleyball field and grill place next to the office
Access to wellness facilities and integration events as well as training and broad
Development opportunities
#LI-LB1
Travel Requirements
Under 10%
Relocation Provided
Domestic
Position Type
ExperiencedReferral Payment Plan
NoCompany
Motorola Solutions Systems Polska Sp.z.o.oEEO Statement
Motorola Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion or belief, sex, sexual orientation, gender identity, national origin, disability, veteran status or any other legally-protected characteristic.
We are proud of our people-first and community-focused culture, empowering every Motorolan to be their most authentic self and to do their best work to deliver on the promise of a safer world. If you’d like to join our team but feel that you don’t quite meet all of the preferred skills, we’d still love to hear why you think you’d be a great addition to our team.
We’re committed to providing an inclusive and accessible recruiting experience for candidates with disabilities, or other physical or mental health conditions. To request an accommodation, please email ohr@motorolasolutions.com.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security C CI/CD DAST DevOps Firewalls Java Node.js OWASP Python Scripting SDLC Security strategy Strategy Vulnerabilities Vulnerability management XSS
Perks/benefits: Competitive pay Equity / stock options Flex hours Health care Insurance Relocation support Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cyber Security Architect jobs
- Open Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Consultant jobs
- Open Cybersecurity Editor jobs
- Open IT Security Engineer jobs
- Open IT Security Analyst jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open Information Security Architect jobs
- Open Security Operations Analyst jobs
- Open Security Consultant jobs
- Open Risk assessment-related jobs
- Open Network security-related jobs
- Open CISM-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open DoD-related jobs
- Open Java-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open SaaS-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs