Tech Stack

Description

You will lead the mission of embedding security into the software development lifecycle at Collibra, managing a team to protect LLM-powered features, Kubernetes clusters, and enterprise platforms. You'll partner with engineering to automate security testing, manage AI supply chain security, lead vulnerability threat management, and ensure compliance audit readiness.

Requirements

• 7-10 years managing security engineering teams in SaaS/microservices environment
• Extensive experience integrating SAST, DAST, SCA into developer workflows and container orchestration
• Hands-on experience with AI security standards and securing data pipelines for LLMs
• Experience leading PSIRT, managing CVEs/VEX, triaging production vulnerabilities
• Strong understanding of FedRAMP, STIG, and enterprise compliance frameworks

Responsibilities

• Embed automated security testing (SAST/DAST/SCA) into CI/CD workflows and IDEs
• Implement NIST and OWASP AI frameworks for LLM features and manage SBOM
• Lead PSIRT process, manage Bug Bounty program, oversee penetration testing and threat modeling
• Own product security controls for FedRAMP, SOC 2, ISO 27001
• Manage product security budget, vendor relationships, and developer enablement programs