Facebook pixel

Engineering, Security
Posted on 8/23/2022
Experience Level
Desired Skills
  • Experience managing, establishing, creating, and deploying security and privacy efforts at a complex organization
  • CISSP certification is highly desirable
  • 5+ years of progressive management experience
  • 10+ years of applicable security practitioner experience
  • Emotional intelligence, kindness and the ability to listen, understand and respond to multiple perspectives
  • Ability to grow and learn as a leader while growing and developing others
  • Desire to get results through collaboration with others rather than personal technical proficiency
  • Experience with a broad range of security services and disciplines
  • Bachelor's degree in a related field or the equivalent in work experience
  • Experience with open source or open knowledge communities
  • Experience as a contributor in the Wikipedia or Wikimedia project communities
  • The global security program, consisting of, but not limited to, the following domains: Application Security, Cyber Risk, Security Awareness, Threat Intelligence, Vulnerability Management, Security Incident Response, Privacy Engineering, Enterprise Security, Pen Testing and Capabilities Management
  • Providing strategy, leadership, staffing and budgetary requirements across a portfolio of security services in the above domains
  • Evaluating current capabilities in conjunction with the Capabilities Management team to ensure effective security controls and countermeasures
  • Managing and developing a team of security professionals by hiring, managing performance, setting individual and team goals, and developing skills and career arcs
  • Work with peer groups such as Enterprise Risk, Legal, IT, Finance, Advancement and others in the Foundation to define and execute:
  • Strategies for addressing security and privacy concerns
  • Initiatives to maintain security as related to software design, development, documentation, and release; and
  • Practices to ensure the privacy, security, and integrity of data throughout the collection, access, analysis, release, and retention processes
  • Supporting compliance and audit for GDPR, PCI DSS, and other applicable regulations
  • Working closely with WMF and the community to cultivate an enabling culture of security to ensure security and privacy efforts are baked into the way we share free knowledge
  • Serving as the thought leader and influencer for all things related to security and privacy
  • Defining and setting priorities and roadmaps for the security and privacy teams
Wikimedia Foundation

501-1,000 employees

Nonprofit charitable organization
Company Overview
The mission of the Wikimedia Foundation is to empower and engage people around the world to collect and develop educational content under a free license or in the public domain, and to disseminate it effectively and globally.