The Product & Services Cybersecurity Team is tasked with securing our customer-facing products and services. We are passionate about what we do and it is a job like no other. Our customers are first responders. Fire, police, and paramedics; 911 call takers and 911 dispatchers. When we or our loved ones place that call to 911, we become the customer of our customer. We want that call to be answered, and we want the communications between the dispatcher and the first responder to be available. But what if that 911 call center, or the communications link to the responders in the field, were under attack? What if you or your loved ones call to 911 went unanswered, or they were unable to dispatch paramedics to your location, because they had been taken down by ransomware? This is not just theoretical; it is happening. First responders and 911 call centers are under attack around the globe - this is a chance to fight back, and protect the people who protect us.
Job Description
The Product Cyber Assurance Analyst is tasked with developing and implementing the strategy to ready our products and services to meet the evolving security needs of our customers. It is a new position, one that will empower the manager to think big and build the cybersecurity market enablement program for products deployed at customer sites from the ground up, resulting in significant value creation for the business.
Tasks and Responsibilities
- Develop and implement the strategy to ready our portfolio of products & services deployed to customer sites to meet the evolving market requirements for security expected by our customers, with an emphasis on compliance to NIST SP 800-53
- Partner with the sales team to identify market opportunities and create a revenue-prioritized funnel of products & services to be taken through the market readiness program
- Guide the prioritization of NIST SP 800-53 gap assessments for identified products
- Partner with the business (engineering & product management) to develop and maintain a plan of action & milestones (POA&M) to address gaps as determined by NIST SP 800-53 gap analysis
- Drive the definition, curation, and maintenance of security packages needed to support contracting, sales, privacy, legal, and customer audits of our external representation of security
- Accelerate time to market by providing expert guidance and leverage existing evidence and pre-existing knowledge of certifications such as SOC and ISO
- Reduce compliance costs for the company by creating common practices, processes and procedures that can be developed once, and used many times across many products & services
- Ensure coordination and communication across diverse functions, including engineering, product management, GRC, legal, sales, and marketing, in support of the market readiness program
- Partner with peer security functions, including Security Architecture and Application Security, to provide implementation guidance to development teams to meet NIST SP 800-53 control objectives
- Partner with the business to support conversations with customers and prospective customers, including before, during and after sales
- Implement a continuous monitoring program to provide assurance for the continued compliance of product security to NIST 800-53 security requirements
- Partner with marketing to drive the development of external-facing collateral to provide Motorola Solutions with a competitive advantage over our competitors
Core Values
- Ability to consistently achieve results, even under tough circumstances
- Ability to innovate and create new and better ways for the organization to be successful
- Actively seek new ways to grow by taking on new opportunities & challenges with a sense of urgency & enthusiasm
- Ability to build strong stakeholder relationships and deliver business-centric solutions
- Ability to partner and work collaboratively with others to meet shared objectives, and to gain the confidence and trust of others through honesty, integrity, and authenticity
- Ability to recognize the value that different perspectives and cultures bring to an organization
Basic Requirements
- BA/BS in a business or technology related field
- Experience in communicating to senior level stakeholders
- Experience and expert knowledge in industry frameworks, including NIST 800-53, SOC and ISO, and auditing/assessing against them.
- Experience working with and coordination across global, cross-functional teams
- Experience leading service delivery resulting in business outcomes
- Experience translating security framework requirements into terms that can be understood by the business
- Certification in CISSP, CISM, or equivalent