This job posting has expired and no longer is available. Please explore other opportunities.

Sr. Manager, Product Security & Engineering

Remote (United States)
Austin, TX +1

Zynga is seeking a highly skilled Senior Manager, Product Security & Engineering to lead our production security team. The ideal candidate will have a strong background in both cybersecurity and engineering, with a focus on securing gaming production environments and infrastructure. Extensive experience, leading, mentoring and developing engineers and architects


MAIN RESPONSIBILITIES

  • Develop and maintain a comprehensive strategy for the continuous maturity of Zynga’s Application & Production Security program, which extends to all game, central platform and tools development throughout the company
  • Collaborate with partners across product, production, and development teams to integrate security policies, standards, and practices into the software development lifecycle (Secure SDLC)
  • Develop a culture of security ownership and responsibility across the company
  • Build a reporting structure of important metrics for the program to the senior leadership team
  • Establish and promote secure development training content and programming
  • Collaborate closely with multi-functional teams, including software engineers, system administrators, and network engineers, to incorporate security measures into the development and deployment processes.
  • Conduct regular security assessments and audits of production systems to identify vulnerabilities, assess risks, and implement appropriate remediation measures.
  • Serve as a domain authority on production security issues, providing guidance, training, and mentorship to team members and partners.


DESIRED SKILLS 

  • BA/BS in a computer science or equivalent experience
  • 10+ years of validated experience in application security, security engineering, software development or an equivalent field
  • 5+ years of management experience leading all aspects of teams of at least five or more individual contributors
  • Experience in working with 3rd parties and translating their findings into workstreams
  • Team building skills and ability to give concise and clear directions
  • Excellent verbal and written communication skills
  • Excellent analytical and problem-solving skills
  • Deep knowledge of various application and information security frameworks, such as BSIMM, OWASP SAMM, NIST CSF
  • Solid understanding of the principles and techniques for both manual and automated application security assessments
  • Experience with Java, Golang, C#, C++, PHP, Python, Javascript
  • Understanding of a variety of web technologies including JSON, WebSockets, HTTP/2, DNS, RESTful APIs


RECOMMENDED SKILLS AND EXPERIENCE

  • Experience with scripting and process automation
  • Experience working in or establishing secure CI/CD pipelines
  • Experience with SAST, DAST, and SCA testing methods
  • Experience with penetration testing and offensive security tools and techniques e.g., Burp Suite, Metasploit, Wireshark
  • Industry certifications preferred (CISSP, GSEC, OSCP, CEH, etc.)


WHAT WE OFFER YOU

  • Competitive salary, bonus plan and ESPP (Employee Stock Purchase Plan)
  • 401K Company Match Contribution (US)
  • RRSP/DPSP company match contribution (Canada)
  • Health coverage, dental, disability, critical illness, EAP, and life insurance (Canada)
  • Medical, dental, vision, EAP, life insurance, and disability benefits (US)
  • Virtual mental health and neurodiversity support programs
  • Global Fitness reimbursement program
  • Global Wellbeing Program
  • Financial wellness program with unlimited access to certified financial planners
  • Discretionary Time Off policy for many employees
  • Family planning support program
  • Generous paid parental, pregnancy-related disability, caregiver, and compassionate leaves
  • Subsidized Back-up child care
  • Zynga happy hours and frequent employee events
  • Flexible working hours on many teams
  • Culture of diversity and inclusion including employee resource groups
  • Work with cool people and impact millions of daily player


We are an equal opportunity employer and we are committed to building a diverse and talented workforce. We do not discriminate on the basis of race, sex, religion, colour, national origin, gender, gender identity, sexual orientation, age, marital status, veteran status, medical condition, disability, or any other class or characteristic protected by applicable law. We welcome job-seekers, players, employees, and partners from all backgrounds to join us!


We will consider all qualified job-seekers with criminal histories in a manner consistent with applicable law.


We are committed to providing reasonable accommodations to qualified individuals with physical or mental disabilities in order to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us at [email protected] to request an accommodation associated with your application for an open position.


This is a fully remote role that may be based anywhere in the United States. Below are the expected salary and wage ranges for applicants based in locations where the pay transparency law is in effect:

  • Colorado: $155,800 and $230,560 per year
  • California: $138,500 and $204,980 per year
  • New York State (inclusive of New York City): $121,200 and $179,400 per year
  • Washington: $121,200 and $179,400 per year


Base pay offered is based on market location, and may vary further depending on individualized factors for job candidates, such as job-related knowledge, skills, experience, and other objective business considerations. Subject to those same considerations, the total compensation package for this position may also include other elements, including a bonus and/or equity awards and eligibility to participate in our 401(K) plan, in addition to a full range of medical, dental, vision, and basic life insurance. Employees will also receive 16 paid holidays per calendar year, unlimited discretionary time off, and will receive up to 6.5 sick days per calendar year.


Details of participation in these benefit plans will be provided if an employee receives an offer of employment. If hired, employee will be in an “at-will position” and the company reserves the right to modify base salary (as well as any other discretionary payment or compensation or benefit program) at any time, including for reasons related to individual performance, company or individual department/team performance, and market factors.


Zynga does not engage in financial exchanges during the recruitment or onboarding process. We do not conduct job interviews over third-party messaging apps such as Telegram, WhatsApp or others. We will never ask you for your personal or financial information over unofficial chat channels. Our in-house recruitment team only contacts individuals via official company email addresses (i.e., via a zynga.com or naturalmotion.com email domain).


If you believe you have been the victim of a scam, you may wish to contact the authorities. In the United States, you may file a complaint with the FBI. More information is available here: https://www.ic3.gov.

Subscribe to Job Alerts