Sr. Security Technical Product / Program Manager
CurrentAccomplishments:- Piloted an AI-enhanced vulnerability severity categorization system, leveraging and training LLM (Large Language Model) to determine the potential severity of newly-identified security vulnerabilities.- Product-managed an AI-boosted early warning system that promptly notifies stakeholders of both newly-identified and emerging software vulnerabilities.- Onboarded and supported over 1,000 projects and teams onto the newly-established SAST (Static Application Security Testing) platform.- Advanced 13,000+ software engineers/architects through self-selected learning paths in annual role-based security and privacy compliance training, achieving a 92%+ completion rate within a year.- Collaborated with internal development teams and external consultants to complete a comprehensive evaluation of eight commercial Static Application Security Testing (SAST) scanners, involving dozens of labs.- Revamped a new role-based Security and Privacy Training Program, leading to its rollout to over 10,000 engineers with an 88% completion rate within seven months.- Received the ROCStar award, recognizing exceptional contributions across business units and functions from a pool of over 600 R&D members.- Earned the A.N.T.L.E.R award, designating the leading employee among 100+ product security members.- Designed and implemented a new Security and Privacy Training Program that was targeted, role-based, scalable, trackable, and time-saving. Phase one achieved an 81% satisfaction rate and an 85% completion rate within 90 days.- Developed Secure SDLC metrics and dashboards to improve management visibility, peer communication, and workload forecasting/balancing.- Managed Secure SDLC activities for several flagship cloud products and services seamlessly.