State Street Senior IT Program Manager in Quincy, Massachusetts

State Street is seeking highly motivated individuals with cross disciplinary technical experience to help drive application security verification to “The left” within its System Development Life Cycles.

Candidates will present a dominant discipline overlapped by others that are relevant, such as Program Management, Security Architecture, Security Analysis and Application Functional Quality Assurance testing.

We’re looking to build a high functioning team that will: 1. Define security verification methodologies 2. Assist in the creation of in-flight application security validation with development teams using Agile and Waterfall life cycle models 3. Develop and provide Security Verification training and 4.Deploy, integrate and automate the use of Security testing tools along with Static and Dynamic Application Security Scanners 5. Maximize developers experiences using the Application Security Verification platform and techniques 6. Drive the onset of application security verification in Continuous Integration / Continuous Delivery pipelines

Global Quality Solutions’ Senior Service Fulfillment Managers are responsible for all aspects of delivery of all GQS SVC sponsored services: orchestrating, deployment, service level management, evolution and decommissioning. They maintain a “big picture” perspective that spans incorporation of corporate goals, planning, operations, communications, career development of subordinate employees and customer advocacy. They manage a very lean team of focused, purposeful contributors.

Define and implement an operating model

  • Define an adaptable program management model guided by the Global Quality Solutions Playbook that implements GQS’ service delivery strategy and applies the Security Verification Center’s methodologies

Create and communicate an operational vision, provide direction and motivate team members

  • Establish a leadership hierarchy to support service delivery functions Recruit, hire, mentor and provide managerial oversight of personnel Create a positive work environment by maintaining solid, productive and involved relationships with, in particular, SVC SECDEVOPS and SVC Info Sec Infrastructure Managers, Engineers and cross-functional virtual team member

Establish an Entitlements and Vulnerability Identification Platform

Manage the Design, Deployment, Support and proliferation of a cohesive platform for the execution of Application Security Tests that encompass

  • Application Entitlement Structures A specified subset of the top 10 OWASP vulnerabilities Integration with the Defect Tracking system (HP Quality Center) and Source Code Management components (RTC and Jenkins) Triaging by Subject Matter Experts Guidance for Application Developers Management Reporting

Expand existing services and Introduce additional capabilities

Conduct planning sessions with leaders of the SecDevOps and Information Security Infrastructure teams to identify emerging patterns of capabilities in need of packaging/orchestration

  • Oversee delivery of QA services concurrently

  • Enable service delivery for a mix of for Waterfall, Iterative and Agile based processes development activities

  • Enforce the policy that all GQS/SVC Projects are Audit compliant at all times – including sign off by stakeholders for Test plans and providing sign off for each Project that includes test results.

Bachelor's degree with 10+ years of State Street experience and/or 10-15 years of industry experience in IT/Financial Services setting ideally having driven programs involving:

Adoption of Business Application Systems, Technology Infrastructure, Information Security and Risk Management operations.

Mature, Highly Developed Leadership Style

Strong organization and budget management skills

Highly developed written and oral communication skills

Ability to work well individually and among teams

Knowledge of Microsoft Office tools

Proficient with Visio, PowerPoint and Project

Experience operating in a highly regulated industry and under continuous scrutiny from internal/external auditing organizations

Must be willing and able to be located in Eastern Massachusetts, be a work-authorized individual as defined by the US Department of Justice, encompassing U.S. citizens, lawful permanent residents and lawful temporary residents

  • Posted 30+ Days Ago
  • Full time
  • R-571516