Principal TPM, Vendor Security

Bellevue, WA /
Software – Information Security /
Full-Time
/ Hybrid
Do you want to change the world? We do, too. 
SunPower is changing the way our world is powered every day with a passionate and driven team of more than 3,660 full-time employees in North America and the Philippines. SunPower provides world-class solar solutions to residential customers across the U.S. with a commitment to a superior customer experience. We welcome forward thinkers, freedom chasers and all those demanding better, cleaner energy to join us.

Summary of Role:
Come protect SunPower customers and change the way the world is powered!  SunPower is looking for an experienced Staff Technical Program Manager who can ensure SunPower’s use of third parties meet our customer's security and privacy needs.  These third parties are business partners and often provide software-as-a-service (SaaS) to SunPower.  Occasionally these third parties are potential acquisitions and you will lead security due diligence efforts.   
You will not only be responsible for assessing these third parties and driving the right security controls, but also for innovating how we hold high-security standards at scale.   As a result, a strong candidate should be a technical security professional who can communicate with technical teams, non-technical audiences, and executives.  Project management as well as security and business metrics skills are foundational. A passion for renewable energy is a plus (if not, we’ll inspire you). 
Security leaders at SunPower have a demonstrated ability to make a significant security impact through strong communications, prioritization, and partnership with SunPower teams.  We nurture a strong security culture and focus on scaling our security program as SunPower grows rapidly.  We invest in our teams with particular attention to high standards, career growth for our team members, maintaining an inclusive environment, and building a diverse team.   
You will have the opportunity to mentor others and grow their security skills while being a thought leader for SunPower.  You will also be mentored by and learn from engineering and renewable energy leaders.  Finally, you will have our support to maintain a healthy balance between your work and your personal life.   
Why SunPower?  Whether you like interesting security, technology, renewable energy, or working with smart, fun people, we have you covered.  We have one of the largest AWS IoT (Internet of Things) deployments and we’re building with cutting-edge cloud products such as AWS Lambda.  We are creating innovative renewable energy solutions such as virtual power plants and bi-directional electric vehicle charging for whole-home backup power.  As a security team, we pride ourselves on being very engaged with other SunPower builders, while holding high standards.  Because that’s just more fun. 

*We have a preference for candidates who are within driving distance of our technology offices in Austin, TX; Seattle, WA; and Richmond, CA., or are willing to relocate.  An exception to this preference will be considered for candidates who meet specific requirements.  We are a hybrid team who values periodic in-person collaboration when it is safe to do so.

Essential Responsibilities:

    • Conduct security risk assessments of third-party vendors and, occasionally, potential acquisitions. 
    • Set the vendor security strategy for key SunPower, build a program for this strategy and manage this program. 
    • Communicate risk and risk mitigation plans to the SunPower leadership team, with a heavy emphasis on metrics.
    • Author and influence vendor security standards and education for SunPower staff. 

Required Qualifications:

    • BA/BS in computer science, information security, information science, a related field, or an equivalent work experience. 
    • 3 or more years of managing software or systems engineering projects and programs. 
    • 2 or more years of working on software or systems architecture, addressing security concerns. 
    • 2 or more years of working with third-party products, including software-as-a-service. 
    • 1 or more years of experience communicating with both technical and non-technical audiences, verbally and in writing. 
    • 2 or more years of experience with security, engineering, and business metrics. 
Pay Range
$99,600 - $149,400*
 
Other rewards may include annual bonus eligibility, short and long-term incentives, and a comprehensive and competitive benefits program which includes health insurance coverage, employee wellness, life and disability insurance, a retirement savings plan, paid holidays, paid time off, and so much more.
 
*Please note the pay range provided is a good faith estimate for this position only and in the geographical location noted.

Don’t meet every single requirement? Studies have shown that women and underrepresented minorities are less likely to apply to jobs unless they meet every single qualification. At SunPower, we are dedicated to building a diverse, inclusive, and authentic workplace, so if you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right candidate for this or other roles.

Equal Employment Opportunity
The Company is an equal employment opportunity employer and makes employment decisions, including but not limited to, hiring, firing, promotion, demotion, training, and/or compensation, on the basis of merit. Employment decisions are based on an individual’s qualifications as they relate to the job under consideration. The Company’s policy prohibits unlawful discrimination based on sex (which includes pregnancy, childbirth, breastfeeding, or related medical conditions, the actual sex of the individual, or the gender identity or gender expression), race, color, religion, including religious dress practices and religious grooming practices, sexual orientation, national origin, ancestry, citizenship, marital status, familial status, age, physical disability, mental disability, medical condition, genetic information, protected veteran or military status, or any other consideration made unlawful by federal, state or local laws, ordinances, or regulations. The Company is committed to complying with all applicable laws providing equal employment opportunities. This commitment applies to all persons involved in the operations of the Company and prohibits unlawful discrimination by any employee of the Company, including supervisors and co-workers.

EOE Minorities/All Genders/Protected Veterans/Disabled

SunPower Supports EEO

Accommodation for Applicants to SunPower Corporation
SunPower Corporation is an Equal Employment Opportunity / Affirmative Action employer and provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in job application procedures. If you have any difficulty using our online system and you need a reasonable accommodation due to a disability, you may use the following alternative email address to contact us about your interest in employment at SunPower Corporation: jobs@sunpower.com. Please indicate in the subject that line of your email that you are requesting accommodation. Only candidates being considered for a position who require an accommodation will receive a follow-up response.

NOTICE TO ALL APPLICANTS AND EMPLOYEES

Availability of Affirmative Action Plan for Review
SunPower is a federal government contractor. As a part of the Company’s obligations under law, it must develop a written Affirmative Action Program (AAP) for the Disabled, Recently Separated Veterans, Armed Forces Service Medal Veterans, Disabled Veterans and Active Duty Wartime Or Campaign Badge Veterans and for Women and Minorities as specified by law. Non-confidential and non-proprietary aspects of the AAP are available for inspection by applicants and employees, consistent with applicable law, which will be made available during office hours by contacting the EEO Officer.