**Technical Security Product Manager** Active SC Clearance Required
Initial 12-Month Contract – Inside IR35 : £750 per day
We are seeking an experienced Technical Security Product Manager to join a high-profile UK government technology programme. This is a critical role that provides the opportunity to take ownership of a shared services platform that is designed to enhance security posture, improve threat detection, and bolster resilience against emerging cyber threats. The platform uses advanced security technologies and is highly confidential, making it a key part of national security efforts.
Key Responsibilities:
* Develop a Technical Product Vision: Focus on enhancing the platform’s security features, improving threat detection, and integrating threat intelligence products to proactively address vulnerabilities.
* Collaborate on Technical Roadmap: Work closely with security architects to ensure the product roadmap integrates necessary updates to handle emerging threats, improving scalability, performance, and security.
* Oversee Integration of Security Tools: Manage the integration of third-party security tools, such as threat intelligence platforms, SIEM (Security Information and Event Management) systems, and vulnerability scanning tools within an AWS-based cloud environment.
* Vulnerability Management: Collaborate with engineers and architects to identify, assess, and mitigate security vulnerabilities, ensuring the platform is secure and resilient against a wide range of attacks, including zero-day threats and advanced persistent threats (APT).
* Threat Detection Focus: Develop and implement threat detection capabilities by integrating threat intel feeds, analyzing threat patterns, and enhancing the product's ability to detect and respond to real-time security incidents.
* Manage Security Product Backlog: Prioritize security features and vulnerabilities, ensuring that critical security patches, threat intelligence updates, and vulnerability remediations are part of the development lifecycle.
* Ensure Compliance and Frameworks Adherence: Ensure that security frameworks (e.g., OWASP, ISO 27001) are fully integrated into the platform’s design and development process, meeting the highest security standards.
* Lead Vendor Evaluation: Oversee the evaluation and selection of security vendors, ensuring the integration of the most effective security tools, threat intelligence platforms, and vulnerability management products.
* Security Lifecycle Management: Provide ongoing guidance on security policies, frameworks, and best practices, ensuring a secure development lifecycle and maintaining the platform’s integrity across its lifecycle stages (discovery, alpha, beta, live).
* Track Progress and Security Metrics: Use tools like Jira, Confluence, and internal security dashboards to track progress on security-related tasks, providing transparency on the status of vulnerabilities, threat detection improvements, and incident response efforts.
Requirements:
* Active SC Clearance.
* In-depth technical knowledge of cloud technologies (especially AWS) and modern security architectures.
* Proven experience in managing security products with a focus on threat detection, threat intelligence integration, and vulnerability management.
* Strong understanding of security frameworks and compliance standards such as OWASP, ISO 27001, and NIST.
* Expertise in threat intelligence and the integration of threat products (e.g., threat feeds, SIEM solutions, IDS/IPS) into large-scale security platforms.
* Proven experience in lifecycle management of security products, from discovery to incident response.
* Strong problem-solving and analytical skills, with experience in security risk management, incident response, and vulnerability remediation.
* Excellent communication skills, with the ability to explain complex security concepts to non-technical stakeholders and influence decision-making at senior levels.
About the Role:
As a Technical Security Product Manager, you will play a pivotal role in shaping the security architecture of a high-profile government platform, ensuring it can withstand the evolving landscape of cyber threats. This includes overseeing the integration of advanced threat intelligence, vulnerability management strategies, and sophisticated detection technologies to protect against both internal and external threats.
You will be responsible for ensuring that the product meets stringent security, performance, and compliance standards across all environments, including AWS. This role is crucial for ensuring the integrity of the platform and will involve continuous improvements to enhance resilience and response to emerging threats.
This is a fantastic opportunity for an experienced Technical Security Product Manager to make a substantial impact on a critical government security programme, helping to drive forward innovation in the protection of national and global security
For a more detailed conversation please can you reach out to james@entasispartners.co.uk