Product Security Lead

• →Embed core security practices—threat modelling, secure architecture review, and secure code principles—into agile product development to ensure products are secure from inception.
• →Act as the security subject matter expert for your product line, owning visibility of cyber risks, maintaining risk registers, and supporting internal and customer security queries.
• →Develop strong product knowledge, understanding technology stacks, roadmaps, and business priorities to identify risks and influence secure decision‑making.
• →Monitor Key Risk Indicators and oversee timely remediation of vulnerabilities, ensuring root causes are identified and resolved.
• →Collaborate with cross‑functional teams, including Third Party Oversight, to manage vendor and Cloud-related risks, with a focus on secure use of emerging technologies.
• →Coordinate penetration testing activities, track findings via tools like JIRA/Confluence, and ensure risk‑based remediation.
• →Support incident response readiness for product areas, including simulations, documentation, and process improvements.
• →Drive alignment with enterprise-wide security best practices and ensure complete asset management coverage for all product-related components.
• →Prioritize, schedule, and deliver security testing across products while handling ad-hoc assessments and new acquisitions.

• Strong experience in Cloud security, secure architecture/design, and high-availability environments.
• Proficiency in vulnerability management (Nessus preferred), penetration testing results interpretation, SIEM, IDS/IPS, DLP, and threat analysis.
• Knowledge of OWASP Top 10, CWE Top 25, CVEs, and security risk prioritisation.
• Experience across Network, Windows, and Linux security; basic programming or scripting skills.
• Excellent communication, analytical thinking, and project management skills.
• Ability to support customer security discussions and audits when required.
• Preferred certifications: CEH, CISM, CISSP, SANS, AWS Security Specialty.
• Desirable: Experience with AWS, CI/CD pipeline security integration, DevOps/Agile methodologies, compliance frameworks (ISO27001, SOC2, FedRAMP), and incident forensics.

Ideagen is the invisible force behind many things we rely on every day - from keeping airplanes soaring in the sky, to ensuring the food on our tables is safe, to helping doctors and nurses care for the sick. So, when you think of Ideagen, think of it as the silent teammate that's always working behind the scenes to help those people who make our lives safer and better. Everyday millions of people are kept safe using Ideagen software. We have offices all over the world including America, Australia, Malaysia and India with people doing lots of different and exciting jobs.

If your application meets the requirements for this role, our Talent Acquisition team will be in touch to guide you through the next steps.

To ensure a flexible and inclusive process, please let us know if you require any reasonable adjustments by contacting us at recruitment@ideagen.com. All matters will be treated with strict confidence.

At Ideagen, we value the importance of work-life balance and welcome candidates seeking flexible or part-time working arrangements. If this is something you are interested in, please let us know during the application process.

Enhance your career and make the world a safer place!

#LI-FullTime