Manager, Product Security - Hybrid

Solutions driven success.

XPO is a top ten global provider of transportation services, with a highly integrated network of people, technology and physical assets. At XPO Logistics, we look for employees who like a challenge and can communicate effectively in all situations. We want to leverage your skills and years of experience to drive positive results while ensuring a bright future for yourself and XPO. If you're looking for a growth opportunity, join us at XPO.

As the Manager, Product Security, you will be responsible for performing, facilitating and documenting the complex analysis, development and testing of security methodologies and technologies. You'll utilize your knowledge and experience with incident response, threat analysis, governance, risk management and compliance to help keep our operations running smoothly. Become a part of our rapidly growing global team and we'll help you develop your career to a level that will exceed your expectations.

Pay, benefits and more.

We are eager to attract the best, so we offer competitive compensation and a generous benefits package, including full health insurance (medical, dental and vision), 401(k), life insurance, disability and the opportunity to participate in a company incentive plan.

What you'll do on a typical day:

• Manage the Vulnerability Management and Application Security team
• Provide security assessments for applications and vendor software
• Collaborate with Application Developers to incorporate security into the Application Development Life Cycle
• Provide architectural and implementation recommendations for Application development.
• Develop and maintain Vulnerability Management and Application Security Metrics
• Initiate and help establish security guidelines and controls
• Manage and mentor other team members on technical skills, best practices, and problem solving approaches within information security

What you need to succeed at XPO:

At a minimum, you'll need:

• Bachelor's degree or equivalent related work or military experience
• 5 years of experience in Information Security
• Expertise in secure code development, penetration testing to include findings-analysis and remediation and performing static/dynamic code testing
• Demonstrated understanding of the OSI Network Model in application design
• Understanding of Web platform configuration and security concepts
• Solid understanding of end-to-end systems integration
• Experience leading a Vulnerability Management Program

It'd be great if you also have:

• Hands on exposure to Rapid 7 vulnerability scanner or equivalent solution
• Cloud experience with one or more providers: Azure, Google, Oracle or AWS
• Experience with Checkmarx (SAST) and Invicti (DAST) - or equivalent technologies
• Proven track record of successfully delivering business requirements on time and within budget
• Managing small to mid-sized teams

Be part of something big

We are proud to be an Equal Opportunity/Affirmative Action employer. Qualified applicants will receive consideration for employment without regard to race, sex, disability, veteran or other protected status.

All applicants who receive a conditional offer of employment may be required to take and pass a pre-employment drug test.

The above statements are not an exhaustive list of all required responsibilities, duties and skills for this job classification.

Review XPO's candidate privacy statement here.

.buttontextb38ddb05ab8bf3fb a{ border: 1px solid transparent; } .buttontextb38ddb05ab8bf3fb a:focus{ border: 1px dashed #333333 !important; outline: none !important; }

Nearest Major Market: Portland Oregon

Job Segment: Testing, Cloud, Application Developer, Corporate Security, Database, Technology, Security