Job Description

Job Summary

At NetApp, we are forward-thinking technology people with heart. We make our own rules, drive our own opportunities, and try to approach every challenge with fresh eyes. Of course, we can’t do it alone. We know when to ask for help, collaborate with others, and partner with smart people. We embrace diversity and openness because it’s in our DNA. We push limits and reward great ideas.

As a Product Security and Compliance Program Manager in the Product Security Group, you will be responsible for effectively communicating and executing product security projects for NetApp products. This includes working with product and program managers across the NetApp product portfolio to plan and execute security assurance testing, including FIPS 140-2/3, Common Criteria and DoDIN APL. Additionally, the candidate will execute security programs for our secure development lifecycle(SDL/SDLC).

Job Requirements

Strong knowledge within the security assurance domain including FIPS 140-2/3, Common Criteria, DoDIN APL, STIGs, FedRAMP, CMMC and other security assurance requirements.
Lead cross-functional discussions to develop and drive security assurance strategy and vision
Provide business and use case inputs related to security assurance testing
Be the primary contact with vendors and government agencies including NIST, NIAP and DISA
Maintain a comprehensive view of security assurance activities including timelines, milestones, budget, resources and development deliverables.
Identify gaps and potential risk to program execution for fast remediation
This individual will apply domain expertise or unique technical/industry knowledge in solving problems that are unique and extremely complex given time, budget and resource constraints
Strong ability to navigate complex policy and procedures
Excellent verbal and written communications skills, including presentation skills
Ability to manage multiple priorities and complex unstructured tasks in a dynamic work environment
Understanding of waterfall, agile, devops and CI/CD models
Understanding of storage technologies and competitive offerings in the marketplace strongly preferred
Previous experience with development program management preferred
Knowledge of Atlassian toolset a plus
Minimal supervision and direction is provided, as this individual is self-directing and can operate and drive strategic results
Must be a U.S. Citizen
Must be able to obtain a Top Secret clearance and TS/SCI with Full Scope

Education

A minimum of 10 years of experience in product program management is required
PMP highly desirable
Demonstrated ability to manage multiple, critical projects is required.
A breadth of experience influencing without authority in a range of software and hardware engineering areas where security needs needed to triumph over release schedules
Training and experience with the press and analysts related to security risks and proactive remediation and the roles of people, processes, and technology coming together
Experience in the U.S. Government, DoD, Intelligence, and Industrial Security management highly desirable