Conduct regular one-on-ones, performance evaluations, and coaching to drive technical excellence and team accountability. Plan team capacity and prioritize feature work across multi-project environments while managing multi-functional dependencies. Establish and track process metrics using an issue tracking system (Jira); analyze data to identify and drive continuous improvements. Drive implementation of the technical strategy for security feature delivery while maintaining code quality, security standards, and project timelines. Collaborate with security architecture, validation and signing infrastructure teams to ensure secure development, testing, and certification workflows. Implement Agile practices: sprint planning, backlog management, retrospectives, and team coordination. Guide evaluation and adoption of artificial intelligence (AI)-assisted developer tools for requirements analysis, coding, testing, and code review (with human validation). Champion implementation of Security Development Lifecycle (SDL) stages: threat modeling, code reviews, vulnerability management, and security certification. Bachelor's degree or equivalent experience in Computer Science, Computer Engineering, Electrical Engineering, or related field. 3+ years of experience managing security engineering teams. Understanding of ROM and Firmware development lifecycles and their security-related stages. Strong communication and leadership skills to align security engineering priorities across multi-functional teams. Expertise in firmware security, hardware security, and embedded systems architecture. Detail-focused leader with a proven ability to use data from issue tracking systems to drive process improvements and establish metrics-based team goals. Hands-on technical leadership experience including conducting code reviews, contributing to architecture decisions, and mentoring engineers in secure coding practices. Experience working with validation, signing, and infrastructure teams on secure development workflows and certification readiness. Knowledge of enterprise storage security standards (OCP, TCG, NVMe, PCIe, IEEE 1667, DMTF SPDM) or experience contributing to industry security standards groups.
