Overview:
Linden Lab seeks a Program Manager for Security, which refers to both internal systems and the security needs of Second Life Residents - the security of their creations, content, and virtual spaces.
At Linden Lab, Program Managers lead the success of major initiatives and projects and are responsible for their successful delivery and maintenance. Program Managers know how to lead, manage and delegate intelligently, but are responsible for execution as well.
You must have a strong background in development, deployment, and management of network security in web or distributed systems, and should have spent at least a small part of your past career as a developer or equivalent experience. You should have direct experience with common tools and practices used in security processes.
Responsibilities:
- Communicates with those who report security issues, ensures that we have all the information necessary to reproduce the reported issue, and makes sure the reporter knows we are working on the issue raised. The Security PM may do this directly or make sure multiple others do all of the above in a timely fashion.
- Ensures timely diagnosis and fixes of security issues, and prompt reports of those fixes both internally and publicly.
- Works with trusted partners and third-parties to make sure security issues are properly reported and, if reported by others, shown to be fixed.
- Works with QA and release management on fixes by co-writing test cases and coordinating the fix's release.
- Writes release notes and security postings so SL Residents are aware of the latest available updates.
- Coordinates with internal employees and third parties to track compliance issues and ensures security projects support these stakeholders and broader organizational work.
- Prevents security regressions (i.e. stops holes from opening that we recently closed) by working with a variety of internal teams.
In addition to these day-to-day responsibilities, the Security PM is expected to lead and execute on the creation and maintenance of:
- Continuing education
- Conducts routine executive and staff briefings
- Organizes and promotes recurring engineering staff seminars on topics related to security and deep dives on new technologies and techniques
- Security policy, specifically:
- The development, improvement, and promotion of security policy
- Standards and guidelines for information security and acceptable usage
- Software risk management:
- Analysis of internal and SL Resident information assets, threat sources, vulnerabilities, threat likelihood and impact
- Development of policy, processes and tools for categorizing information assets and defining their protection requirements
- Identifying, controlling and mitigating information security risks on an ongoing basis
- Guidance on technical, network, and security architecture improvement
Fine Print: Linden Lab seeks to maintain a diverse and welcoming workplace; therefore candidates from all backgrounds are encouraged to apply.
Notice to Recruiters: Please do not submit resumes to our jobs site, to our employees or to Linden Lab by any other means, unless you have a written contract with us, signed by an officer of Linden Lab. We are not responsible for any fees related to unsolicited resumes.
APPLICATION INSTRUCTIONS
Please email your resume in PDF, RTF, HTML, or ASCII text format to the address below. If
you wish to enclose a cover letter, please include it in the body of your email message.
33977-CJB-0@lindenlab.hrmdirect.com
