AMD Private-Dallas-Associate-Security Engineering

Role Overview

The Lead Information Security Officer for Asset Management is a critical leadership position responsible for defining, implementing, and overseeing the comprehensive information security and cybersecurity risk posture within the Asset Management Private business. This role balances commercial objectives with robust security controls, ensuring resilience against an evolving threat landscape and protecting client assets and data.

• Work with internal application development teams to understand security and business resiliency control requirements and advise on integration into applications.
• Collaborate with global Application Security Risk, Business Continuity, Risk Measurement, and other Technology Risk teams to develop and integrate best‑in‑class security and resiliency controls.
• Communicate the impact of technology risks, the approach to mitigation/acceptance, and provide risk assessment and advisory services to technology engineers and business management.
• Assess existing applications for design‑related security risks and assist teams in determining appropriate remediation stepsn
• Provide guidance to engineering leadership and application developers on emerging threats in web and mobile application space.
• Drive adoption of embedded application security controls as part of the Software Development Life Cycle (SDLC).
• Provide deep subject‑matter expertise on secure application design and development approaches and techniques.
• Contribute to the technical understanding, adoption, and convergence of information security standards, solutions, and tools.
• Work with engineers to develop customized security testing strategies to complement the existing security testing program.

• 3–5 years of progressive experience in multi‑domain Information Security, including vendor security, application security, vulnerability management, data loss prevention, encryption, and infrastructure security.
• Expert knowledge of global financial regulations such as SEC, FINRA, GDPR, CCPA, and experience applying risk management methodologies such as FAIR.
• Proven ability to build, mentor, and lead high‑performing global security teams.
• Track record of collaborating with engineering, technology, risk, audit partners to deliver projects and resolve audit issues within committed timelines.
• Exceptional written and oral communication skills, with the ability to articulate complex technical risks and solutions to technical and executive audiences.
• Experience performing risk assessments, identifying compliance gaps, and recommending effective mitigation strategies.
• Familiarity with security standards and frameworks such as NIST, OWASP, SANS, PCI DSS, and CIS Controls.
• Technical depth in security data analytics, dashboarding, and reviewing software development lifecycle best practices (e.g., code reviews, vulnerability scans) to advise secure practices and frameworks.

• BS or MS degree in Computer Science, Cyber Security, Information Security, or a related field.
• Relevant industry certifications such as CISSP, CISM, CRISC, CISA, or cloud‑specific security certifications (e.g., AWS Certified Security – Specialty).
• Experience leveraging AI/ML to solve security problems and scale operations.
• Knowledge of secure coding languages such as Python, Java, Go.

Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, veterans status, disability, or any other characteristic protected by applicable law.