Overview
Skills
Job Details
InfoWeb Systems, Inc. has the following opportunity with our direct client, John Deere:
Location: Urbandale, IA (Des Moines area)
Duration: 2+ years to LONG term
Rate: DOE/hr on OUR W2
Purpose:
As a product manager in global security, you will deeply understand the stakeholder security needs and help in activities related to weaknesses, vulnerabilities, and exploits of the technologies to solve customer problems and create value for John Deere. You will work within and help define the vision, strategy, processes, and roadmap for the product security team. You will help translate stakeholder needs into clear objectives for the security engineers. You will partner with cross-functional team s responsible for delivery of technologies and products for John Deere customers.
There are three main areas we are seeking to support with this position:
1. Penetration Testing
2. Vulnerability Management
3. Product Security Defense Center
The position will primarily operate in the space of a traditional Red Team for the embedded product space at John Deere. There is opportunity to flex across various security teams based on experience as we have a pool of product managers and are looking to spread the responsibilities appropriately to ensure delivery of both product needs and adherence to the cyber resilience act (CRA). We are also in the process of implementing the standard in draft phase ISO24882 for formalization of work products and traceability of the security process throughout John Deere programs.
Duties:
Description of the major duties performed in this job.
Familiar with and/or run agile process, scrum, kanban, or some form of iterative team development style
Listen to stakeholders, cross-functional teams, and security engineers to deeply understand needs and opportunities
Use strong business judgement and technical knowledge to inform an understanding of what is technically possible and strategically critical to the business
Coordinate and align product roadmap and its features with other product teams in adjacent or supporting areas to manage interactions and dependencies
Work with engineering teams to validate, build, and support solutions that meet defined goals for quality, performance, and cost
Support activities to scope, assess, and communicate penetration testing across all aspects of the product space
Drive the implementation of vulnerability management across multiple teams
Qualifications:
Education: Undergraduate degree in engineering, computer science, cybersecurity, systems engineering, business, or similar
Skills and Experience:
5+ years of building successful products in a program management or systems role
Excellent communication and interpersonal skills, with proven ability to take initiative and build strong, productive relationships
Excellent written and verbal communication skills with ability to inspire and rally a team
Don t need to write software, but technical enough to engage with engineers directly
Basic product knowledge of off-highway agriculture and construction vehicles or related harsh environment vehicles.
Knowledge in basic engineering principles, theory and practice as well as product knowledge. Has a good understanding of the principles and can independently use the knowledge.
Experience in the hardware or software design of an embedded controller product or system.
Understanding of embedded security (secure boot, HSM, cryptographic key lifecycle).
Expertise in vulnerability assessment and penetration testing methodologies.
Knowledge of compliance frameworks and regulatory requirements for connected machinery.
Other Notes:
Visa sponsorship is not available, now or in the future, for this position
There will be two rounds of Teams interviews
Thanks!
Mary
Mary Loney Bichell
InfoWeb Systems, Inc.