ABOUT WIND RIVER

Wind River is a global leader in delivering software for mission-critical intelligent systems. For more than four decades, the company has been an innovator and pioneer, powering billions of systems that require the highest levels of security, safety, and reliability.

Wind River helps customers across automotive, aerospace, defense, industrial, medical, and telecommunications industries solve complex technology challenges on their journey toward the new intelligent machine economy. The company’s software powers generation after generation of the safest, most secure systems in the world. Examples include playing a key role in NASA space missions such as Artemis I, the James Webb Space Telescope, and multiple Mars rovers. We’ve achieved recent 5G milestones including the world’s first successful 5G data session with Verizon and building one of the largest Open RAN networks in the world with Vodafone.

The company has received industry recognition for its technology innovation and leadership, and for its workplace culture, including global Great Place to Work certification and being named a “Top Workplace” for ten consecutive years. If you want to be part of a unique culture where the lived experience is based on our cultural attributes of growth mindset, customer-focus, and diversity, equity, inclusion & belonging, come join us and help advance the future software defined world.

ABOUT THE OPPORTUNITY

YOUR ROLE

Wind River Systems is seeking an experienced Software Product Security Architect to join the R&D Security Office to scale trust in our product security to meet increasing business and security technology needs. This position will join a mature product security team and architect and mobilize product security trust initiatives, manage customer product security trust, and contribute to product security incident response (PSIRT) and vulnerability management.

HOW YOU WILL CONTRIBUTE

In your daily job you will:

• Work and collaborate with customer, product, engineering, and operations teams to ensure high levels of product security trust with a scalable, compliance-driven mindset, across all products
• Architect the product security trust roadmap and scale the compliance framework to meet emerging and future business priorities.
• Empower product security compliance frameworks across engineering and aligned to the CTO Office, Product Management, IT, Legal, Info Sec, and Sec Ops.
• Empower product security champions throughout product engineering.
• Manage customer product security trust and compliance.
• Training, mentoring, and supporting development teams to follow secure development values, principles, and practices.

Key skills and competencies for succeeding in this role are:

• Direct experience with product security assurance techniques including Threat Modeling, Security Testing, Vulnerability Management, Software Composition, etc.
• Experience in software engineering models and techniques.
• Experience empowering security compliance broadly across an organization.
• Broad-based experience with global security regulations, frameworks, and standards.
• Exposure to customer compliance and remediations (Questionnaire’s, Audits, Contracts, etc.)
• Ability to analyze and think quickly and to resolve conflict.
• Strong communication, interpersonal, and mentoring skills.
• Ability to work effectively across the organization.
• Ability to adapt to a changing environment.

QUALIFICATIONS:

• Bachelor's degree in engineering, computer science, information technology or similar field with 14 years of experience in software development, security engineering, and/or compliance. Master’s Degree is preferred and 12 years of related experience.
• Preferred is a certified security professional (CSSLP, CISM, CISSP, CEH, or similar).
• Direct experience mobilizing one or more security standards/certifications/models like OWASP SAMM, IEC 62443, ISO 21434, NIST 800-218, FIPS 140-3, DISA STIG, Common Criteria, CMMC, Fed Ramp, etc.
• Practical experience with the NIST 800 series of security standards, including 800-53, 800-171, and others.
• Experience mobilizing secure software development techniques across an organization such as training, workshops, or similar.
• Demonstrated experience using agile techniques and frameworks to deliver secure software.
• Excellent verbal and written, management level and customer communication skills.
• Preferred experience with the European Union (EU) security regulatory environment including the Cyber Resilience Act (CRA).
• Preferred experience with national security systems and standards (CNSS, etc.).
• Preferred working knowledge of risk management frameworks and risk-based secure software development.
• Preferred experience with AI and Machine learning and their governance and provenance in a secure software development environment.
• Preferred working knowledge of related quality and safety assurance standards such as ASPICE, ISO 26262, or DO-178C.

BENEFITS

• Hybrid work model for workplace flexibility
• Comprehensive health, dental, and life insurance
• Short and long-term disability coverage
• RRSP matching for financial security
• Flexible time-off policies for work-life balance
• Employee assistance program for mental well-being
• Learning benefits, including a LinkedIn Learning subscription and seminars

COMPENSATION

The annual base salary range for this role’s listed grade level is currently $146,000 to 210,00 plus bonus, or $180,000 to $230,200 plus a bonus for MA, NYC, CO, WA and CA residents. Salary ranges are determined through interviews and a review of the education, experience, knowledge, skills, location, and abilities of the applicant, and equity with other team members.

SPECIAL CLEARANCE REQUIREMENTS

This position will perform work that the U.S. government has specified can only be performed by a U.S. citizen on U.S. soil, and therefore any offer will be contingent upon verification of both of these requirements.

Join us at Wind River, where we're not just shaping technology; we're shaping the future of a safer, more connected world. Your journey to make a meaningful impact begins here.

Wind River is an Equal Opportunity Employer with a commitment to diversity. We prohibit discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.

• Privacy Notice
• Active Candidates: https://www.aptiv.com/privacy-notice-active-candidates

Aptiv is an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, gender identity, sexual orientation, disability status, protected veteran status or any other characteristic protected by law.