Create and execute on a product security strategy designed to improve the quality and security of Gemini’s platform.
Develop a program to educate engineers about secure development practices.
Work with team members to model threats in order to help engineers make more informed decisions and better prioritize features
Lead the development of tools that make it easier to ship secure code and harder to ship insecure code.
Manage internal and external security assessments of the Gemini platform and internal applications.
Lead a dedicated group of engineers to prioritize and develop security features within the Gemini platform.
Develop and share research in the area of product security and vulnerability management.
Manage the work and career growth of team members, comprising both application security engineers and developers.
At least 8+ years of experience in application security
Experience building and breaking production-quality software
Ability to accurately weigh security risks against business operations and goals
Have implemented or overseen the implementation of automated or otherwise highly scalable application security solutions
Have security experience across a wide range of domains, including web and mobile applications, cloud environments, Linux, cryptography, secrets management, and authentication and access controls within an organization
Experience finding vulnerabilities in real-world applications and guiding their remediation