In This Role, Your Responsibilities Will Be:

• Analyzing UML diagrams and DFDs/Threat Models for security flaws and detailing specific recommendations in software and system setup to address them
• Mentoring developers on security topics and coding
• Developing and delivering training to developers and management on security topics
• Analyzing requirements and performing code review for security flaws
• Establishing direction for security requirements in our custom hardware and software
• Collaborating with other internal security groups across multiple divisions, at different levels, and in multiple international locations, as well as 3rd parties
• Continuous improvement of security processes via observation and measurement of project performance, and making updates to improve accuracy, and reduce overhead, while maintaining compliance with IEC 62443 3-3 and 4-1 standards
• Participating in audits for standards compliance

Who You Are:

You anticipate the impact of emerging technologies and make adjustments. You provide timely and helpful information to others across the organization. You provide direct and actionable feedback. You maintain relationships across a variety of functions and locations. You uncover the root causes to difficult problems.

For This Role, You Will Need:

• BS/MS Degree in Computer Science, Computer Engineering, or a related engineering field with appropriate experience
• Minimum of 4 years of relevant experience
• Hands-on, professional coding experience, C/C++ or C# preferred
• Understanding of SDL/secure software development lifecycle practices
• Practical experience in software and security design principles
• Experience performing application-level threat modeling and code review
• Excellent interpersonal skills, written and verbal communication skills
• Ability to communicate technical information to a wide range of audiences
• Knowledge of malware trends and current cybersecurity issues
• Experience with PKI/Certificates, Cryptography

Preferred Qualifications that Set You Apart:

• Experience with cloud development/security is an advantage
• Knowledge of trends in security specific to control systems
• Experience in the ICS or Automotive Industry, and with other OT network technologies is a plus.
• Experience working with geographically distributed teams in a 100+ developer organization.
• Certifications such as CISSP, CEH, GSSP, GSEC, CSSLP, GIAC, ISA Cybersecurity, etc.

Work Arrangement: Hybrid setup with four days onsite and one day remote work each week.

Schedule: Morning shift with flexible hours.