Sr. Staff Product Cyber Security Engineer

At Synopsys, we drive the innovations that shape the way we live and connect. Our technology is central to the Era of Pervasive Intelligence, from self-driving cars to learning machines. We lead in chip design, verification, and IP integration, empowering the creation of high-performance silicon chips and software content. Join us to transform the future through continuous technological innovation.

You are a seasoned security professional with a passion for product security and a deep understanding of security engineering and architecture. With over six years of experience in the field, you have honed your skills in designing and implementing robust security frameworks that protect both products and customers. Your educational background includes a Bachelor of Science in product security, computer science, mathematics, statistics, or a related field, and you have a proven track record of working in a product security organization. You thrive in collaborative environments, seamlessly working with cross-functional teams, customers, and regulatory bodies to address security issues and ensure compliance with industry standards. Your strong communication and project management skills enable you to lead initiatives and mentor others, driving continuous improvement and innovation in product security. You are adept at critical thinking, problem-solving, and possess a keen ability to think "outside the box" to develop creative solutions to complex security challenges. Additionally, you have familiarity with industry frameworks and regulatory standards such as PCI-DSS, HIPAA-HITECH, Sarbanes-Oxley, GDPR, ISO 27001/2, NIST CSF, FedRamp, and IEC 62443, and hold relevant certifications like CISSP, CISA, CISM, or CRISC.

• Lead the product security processes for Synopsys.
• Implement Product Security policies across the organization ensuring compliance with regulations and standards.
• Guide new product development activities, embedding Security and Privacy requirements into the products.
• Consult with new product development teams on state-of-the-art Security Engineering & Architecture requirements.
• Provide Product Security support for products both pre- and post-market.
• Work closely with customers, sales/marketing/field personnel, and cross-functional teams to address product security issues.
• Lead Product Security initiatives or projects and act as a recognized process owner with expertise across multiple functional areas.
• Provide input into local, global, and corporate processes, representing the function on review boards and teams.
• Interpret KPI trends and drive continuous improvement processes.
• Engage in and may lead internal and external audits with regulatory representatives.
• Define training requirements on Product Security and provide necessary training.
• Coach and mentor others in Product Security topics and activities.

• Strengthen Synopsys' security posture by leading and implementing robust product security processes.
• Ensure all products comply with industry regulations and standards, protecting both the company and its customers.
• Embed security and privacy requirements into new products, enhancing their security and market differentiation.
• Provide expert guidance and consultation to product development teams, ensuring the highest security standards are met.
• Facilitate effective communication and resolution of security issues with customers and internal teams.
• Lead impactful product security initiatives that drive continuous improvement and innovation.
• Contribute to the development and refinement of global security processes and standards.
• Provide critical insights through KPI trend analysis, driving strategic decision-making.
• Represent Synopsys during audits, ensuring regulatory compliance and demonstrating security excellence.
• Empower the organization through comprehensive security training and mentorship, fostering a culture of security awareness.

• Bachelor of Science in product security, computer science, mathematics, statistics, or related field.
• 6+ years of related work experience in a product security organization.
• Strong knowledge of Product Security Concepts (e.g., Data Security and Privacy, Security Engineering and Architecture, Security Assurance).
• Familiarity with industry frameworks & regulatory standards: PCI-DSS, HIPAA-HITECH, Sarbanes-Oxley, GDPR, ISO 27001/2, NIST CSF, FedRamp, IEC 62443.
• Relevant certifications such as CISSP, CISA, CISM, CRISC preferred.

• Strong communication, project management, and influencing skills.
• Ability to manage multiple tasks simultaneously and work independently or as part of cross-functional teams.
• Strong interpersonal skills, written and oral communication, and negotiation skills.
• Critical thinker with strong analytical and problem-solving skills.
• Demonstrated ability to successfully manage and complete projects in a matrix organization.

The Synopsys Information Enterprise Security Engineering team helps the organization transform and securely build what's next for the business. This team focuses on security design, engineering, automation, and the operationalization of security solutions. They are responsible for guiding and defining overarching technical security engineering, ensuring that Synopsys solutions are designed and implemented to the highest security standards and are differentiated in the marketplace.