As a Head of Product Security and reporting directly to the Global CISO, you will play a critical role in leading our Product Security Pillar and driving the implementation of a secure product lifecycle within Adevinta. This position requires strong technical expertise in application security and leadership and managerial capabilities to oversee a team of engineering managers and security staff.The role is open in all our Technical Hubs: Paris, Amsterdam, Barcelona and Berlin (plus Milan).What you’ll doLead the Product Security Pillar: Oversee and provide strategic direction to the Product Security Pillar, ensuring alignment with organisational goals and security best practices.Team Management: Directly manage a team of three managers and indirectly oversee a team of more than 10 security staff, fostering a collaborative and high-performing environment. Provide guidance and mentorship to enhance team members' skills and expertise.Collaboration and Stakeholder Management: Collaborate closely with product engineering and platform teams, to drive security initiatives and ensure alignment with business goals. What the Product Pillar includesApplication and Platform Architecture: Collaborate with product development teams to embed security into the application and platform layer.CI/CD Security Integration: Drive the integration of security practices within the CI/CD processes. Bug Bounty Program: Manage and enhance the bug bounty program, overseeing the triage and remediation process for identified vulnerabilities.Vulnerability Management Support: Support product teams in vulnerability management processes, including analysis, prioritisation, and remediation. Training and Awareness: Develop and deliver comprehensive training programs for developers and product owners.Who you areYou have a Bachelor's degree or higher in Computer Science, Information Security, or a related field.You have 7+ years of experience in developing and managing cyber security programs, budgets and resource allocation.You have proven experience in product security, secure software development, or related roles.You have strong leadership and managerial skills, with experience in managing teams and driving results.You have in-depth knowledge of application and platform architecture, secure coding practices, and cloud security (in AWS).You have experience in integrating security practices within CI/CD processes.You have excellent communication in English (spoken and written) and great interpersonal skills, with the ability to engage and influence stakeholders at all levels.You have strong analytical and problem-solving abilities, with a proactive approach to identifying and mitigating security risks.You have up-to-date knowledge of industry standards, regulations, and emerging trends in application security.Please submit your CV in English.
