Job Description About the role: Strategic Security Integration: Collaborate with Engineering to embed secure design principles across the online shops, native apps, AdTech/MarTech platforms, and other custom-built software. Implement security testing tools (SAST, DAST, IAST, SCA). Security Audits: Perform security architecture reviews, threat modelling, and code analysis to identify and mitigate vulnerabilities early. As single point of contact, plan and steer security audits in collaboration with IT Governance and ensure alignment of the product roadmap for fast mitigation. Vulnerability Management, Thread Detection and Risk Mitigation: Lead proactive vulnerability identification and management, ensuring risks are remediated efficiently. Use tools like Nessus, Qualys, or similar, for continuous scanning, result interpretation, and mitigation. Design, maintain, and execute incident response protocols, coordinating with engineering and governance during product security incidents. Data Protection and Compliance: Work with Product Analytics and IT Compliance teams to ensure adherence to regulations like GDPR and PCI-DSS. Accountability of steering customer data security and privacy across personalization, search, and sponsored product features in the department. Collaboration and Security Awareness: Partner with Engineering Managers, QA Leads, IT Operations and SRE teams to integrate fast and reliable security testing into development and continuous deployment pipelines. Drive education and training for developers on secure coding practices and threat awareness, and topics like OWASP Top 10, secure APIs, and compliance Metrics and Continuous Improvement: Quantify the state of security by defining relevant metrics and driving their adoption through the entire engineering organization.