About the Team
Workday is using the latest software development and cloud technologies to build platforms and application services to support our growth while also ensuring the protection of Workday data and infrastructure is paramount.
The Workday Security Assurance Team is responsible for the delivery of technical solutions, standards, and consulting to protect Workday's application services, infrastructure, and data.
We're committed to bringing passion and customer focus to the business of enterprise applications. We work hard, and we're serious about what we do, but we like to have a good time while we’re at it.
About the Role
We are looking for a Senior Technical Program Manager to support and enhance the Mergers and Acquisitions Security program. The role will support multiple Workday teams and the acquired company (or companies) through due diligence, integration, and post-integration efforts. This includes executing on security integration milestones and working with the acquired company to mature their security posture post-integration.
What you will do:
- Evaluate the security posture of M&As against Workday/best practice standards. This includes people, process, and technology evaluation
- Build knowledge of potential acquisition’s business model, products, and technical environments
- Coordinate detailed technical security reviews of applicationand infrastructure components and ensure consistency of the same
- Coordinate with internal Security teams to integrate acquisitions into the broader Workday security program
- Engage with relevant stakeholders to embed Workday’s Securityengagement processes into the product development and program management lifecycles
- Oversee remediations plans and high-level execution
- Build, execute, and maintain the security maturity roadmap of acquisitions
- Influence culture to keep security top of mind
- Support Compliance and Privacy initiatives (e.g. SOC1/SOC2, GDPR)
- Collaborate continuously with the development, operations, and product teams of acquired companies to understand their requirements and priorities.
- Excellent written and verbal communication skills, building strong relationships with stakeholders internal and external to the Security organization
- 5+ years’ experience in technical Security consultancy, Security engineering, or Security program management experience
- Ability to successfully articulate Security requirements to technical product and technology teams
- Practical experience of Security threat modelling, risk analysis, and control definition
- Strong knowledge of Security fundamentals including access control, cryptography, vulnerability management, secure configurations, secret management, logging and alerting, and system and network Security
- Strong Knowledge of Secure Software Development Life Cycle (SSDLC) practises
- Strong Knowledge of infrastructure and platform technologies (Linux, virtualization, public cloud, Kubernetes, firewalls etc.) and related secure design patterns
- Experience working with complex, high transaction, high availability environments
- Bachelor's degree in computer science or equivalent combination of education and experience
- Ability to manage multiple important initiatives and tasks in a large organization
- Proven track record of taking ownership and successfully delivering results.
- Career & Capability Growth
- Wellness Program
- Pension
- Health Insurance & Dental Plan
- Employee Assistance Program
- Tax Saver Scheme
- Stock Schemes
- 27 Days Annual Leave
