This job might no longer be available.

Director, Product Security and Data Governance

Bethesda Softworks is looking for a world class Director of Security and Data Governance Engineer to lead and further build a highly skilled team of senior security professionals responsible for operational security of AAA titles, digital platform and data in live and studio development environments. The ideal candidate has a proven record with architecting and implementing enterprise strategies for security measures within commercial products, application security, analysis of network data, security for cloud and on premises hosted products, disaster recovery strategies and data compliance. Prior game experience and an ability to understand the unique challenges facing the industry is a definite bonus.

Responsibilities:

• Recommend policies, systems, and solutions that continue to strengthen Bethesda commercial products and platform
• Audit Bethesda Softwork’s security systems and policies on a regular basis, using those results to proactively address information security concerns
• Develop and implement an ongoing employee education program focused on security for games and hosted game operations
• Lead GDPR-focused documentation processes, and assist in developing policies that adhere to various domestic and international data governance requirements
• Manage a team of security engineers and analysts to execute on security strategy and game studio requirements
• Monitoring of intrusion detection and prevention systems
• Monitoring security bulletins, determining applicability and coordinating action plans
• Escalating and coordinating appropriate action for security incidents
• Review access control lists and updating firewalls as needed
• Interfacing with Network Engineering Team to ensure appropriate security measures are in place
• Adhering to high-quality standards and best practices, high performance, and scalable, repeatable processes and deliverables in accordance with applicable regulations
• Analyze, troubleshoot, and investigate security-related, information systems’ anomalies based on security platform reporting, network traffic, log files, host-based and automated security alerts
• Reporting of trends and events to Senior Leadership
• Travel required

Requirements:

• 10+ years security experience
• 5+ years’ experience managing a team of security engineers
• Demonstrated ability to create defensive and offensive security strategies
• Advanced experience with vulnerability and intrusion management
• Provide governance of security protocol to game studios to ensure security best practices with commercial products and platform
• Excellent verbal and written communication skills are essential
• Strong organizational skills with attention to detail
• Ability to multi-task and thrive on a small team in a fast-paced environment
• Passionate about a wide range of gaming and technology/digital trends
• Knowledge of security issues surrounding Linux, Windows, TCPIP, SMTP, HTTP and DNS (and other internet protocols)
• Understanding of GDPR and PCI compliance
• Excellent verbal, written, and interpersonal skills
• Bachelor’s degree in IT, Computer Science, or similar, or equivalent experience

Plus:

• Experience developing a 24/7 Security Operations Center
• Experience with server virtualization and cloud infrastructure with a preference for vSphere and Amazon Web Services
• AWS CLI
• F5 APM/ASM/LTM experience
• Experience shipping a software product
• Previous Game Industry experience