Team Lead - Application Security

Location: Either Torrance, CA or Marysville, OH (Hybrid ~ 75% remote work option)

The Application SecurityTeam Lead role will support large-scale Application Security projects by analyzing the Application Security life cycle and articulating Application Security requirements. The role will support and lead the design, deployment, and support of Application Security solutions designed to protect assets across all four environments of Honda. Team Lead responsibilities will also include the creation of execution plans, coordinating, resources, performing management of team members, including the supervising of education. The scope of this role is providing Data & Application Security services to all 4 critical business environments: Enterprise IT (Offices, Data Centers, End User Devices), Manufacturing OT (Plants, Distribution Centers, Robots,
IoT sensors), Connected Products and the Connected Ecosystem of 3rd party suppliers, dealers, service providers throughout the North America Region.

Application Security Management

• Knowledge of the tools and processes for maintaining Application Security; ability to design and implement security programs to prevent data loss and

access intrusion from web and mobile applications.

• Embeds security into the overall approach and vision for data and application development in an organization (Secure Data & Application Strategy).
• Establishes a vision and an enterprise-wide Application Security strategy to drive business value and protect company, client and participant information.
• Reports regularly to senior management, keeping them abreast of the Application Security strategy and best practices, including the threat landscape and the tactical controls and strategic plans to achieve success.
• Identifies, develops, and implements, in partnership with business operations, technology, and client teams, enterprise projects relevant to sensitive and regulated data.

• Plays a key role helping application developers and application engineers to quickly roll out secure solutions in cloud.• Participates in review meetings, evaluates readiness of the solutions from customer privacy and Application Security perspective.

• Evaluates new tools and technologies considered by data platform team, application development teams, and liaison with enterprise information security team to get approvals from them.
• Develops processes, methods, and technologies to facilitate application testing across varying applications that exist in the systems.
• Inspects adherence of applications and its components to Application Security standards and baselines.
• Identifies list of software or applications to be blacklisted or whitelisted to prevent access

from unauthorized software.

Leadership and Producing Results:

• Knowledge of leadership practices and processes; ability to use strategies and skills to enlist others in setting, knowledge of processes involved in

managing people; ability to lead successful teams, and diligently address issues related to performance and conflicts at the workplace. Understanding of the criticality of getting things done in spite of current circumstances and the ability to utilize assigned resources and leverage back-channel resources (individuals or teams) to achieve or exceed planned outcomes.

• Mentoring, managing, and motivating a high-performing team of managers and engineering professionals and setting clear priorities to achieve enterprise goals and KPIs.
• Anticipates and manages difficult interpersonal situations and conflicts; resolves them to mutual satisfaction.
• Consults within the team; seeks inputs from subordinates and considers all views while making decisions.
• Monitors employee morale and satisfaction; recognizes employee contributions and achievements.
• Regularly reviews employee performance and provides constructive feedback.
• Works collaboratively with people from diverse backgrounds; understands their needs and perspectives.
• Ensures time, resources, energy, and actions are focused on priorities that matter to the business while reliably meets all team commitments, quotas, and goals.
• Communicates a strong sense of urgency about solving problems and getting work done.
• Makes effective use of resources not under own direct control.
• Takes risks in improving products and services while holding self and others accountable.

Conceptual Thinking:

• Knowledge of thinking and reasoning at a conceptual level; ability to identify the critical ideas and interdependencies among system elements that impact

performance.

• Interprets the business impact of changes and project data over time.
• Re-frames complex ideas and diverse data into simple pictures or statements.
• Investigates beneath the surface of an issue to focus systematically on root causes.
• Identifies the most significant patterns or data (e.g., "bad data," high-impact data) to focus on.
• Examines the full range of options when considering new ideas or data.
• Validates results through key measures (e.g., customer impact, etc).

Cybersecurity Standards and Policies:

• Knowledge of developing cybersecurity policies, standards and procedures; ability to develop and communicate policies, standards and

procedures that guide interactions with customers.

• Supports creation and amendment of data loss prevention policies and DevSecOps and Secure By Design programs.
• Documents and shares the security best practices within team, conduct security awareness sessions periodically.
• Follows efficient and effective auditing and compliance reporting.
• Provides feedback for improvement of procedures and policies.
• Assists in the development and implementation of specific cybersecurity policies and procedures.
• Participates in the development of organizational cybersecurity policies and standards.
• Generates status reports for senior management to ensure the implementation of cybersecurity standards and policies.