Job Opportunity
The Lead Product Security Auditor role involves designing and implementing a global product cybersecurity audit framework. The framework should encompass methodology, templates, reporting structures, and audit cycles to ensure alignment with relevant standards and regulations.
Main Responsibilities
* Design and manage the global product cybersecurity audit framework, including methodology, templates, and reporting structures.
* Plan, coordinate, and lead audits across all product divisions and sites worldwide.
* Conduct high-priority and complex audits, especially for critical or high-risk products.
* Lead and guide other auditors; define audit scopes, review findings, and ensure consistency in execution.
* Evaluate secure development processes, threat/risk analyses (TARA), software update mechanisms, vulnerability handling, and secure by design practices.
* Interface with product teams, engineering, compliance, and management to communicate audit outcomes and drive improvement.
* Report results to stakeholders and ensure transparency on cybersecurity maturity.
* Monitor emerging regulations and translate them into audit criteria.