isecjobs.com

Staff Product Security Engineer (Embedded)

Haryana, Gurugram International Techpark Gurgaon (ITPG), India

Full Time Senior-level / Expert USD 60K - 113K * est.
Company logo

Stryker

View all jobs at Stryker

Apply now Apply later

Work Flexibility: Hybrid

What you will do:

  • Provide technical leadership and guidance to a team of Web, Embedded and IoT Security engineers.

  • Execute and oversee Penetration Testing and Vulnerability Assessment activities for Embedded Systems and IoT devices.

  • Leverage DevSecOps to embed security testing (SAST, DAST, Host Scanning, ATO Scanning, SBOM Generation) into all phases of SDLC. Develop/review technical documentation (procedures/work instructions/guidance documents) for technical services.

  • Develop and maintain comprehensive test plans, methodologies, and tools for security testing.

  • Conduct in-depth analysis of security vulnerabilities and propose mitigation strategies.

  • Collaborate with cross-functional teams to design and implement secure Embedded and IoT solutions.

  • Lead the SBOM Management program, ensuring accurate identification and documentation of software components and dependencies.

  • Drive continuous improvement initiatives related to Embedded and IoT security, testing, and vulnerability management.

What you need:
 

Required Qualifications:

  • Bachelors or Master’s in Computer Science Engineering

  • 7 to 11 years of experience developing or securing embedded and IoT applications.

  • Experience with threat modeling, risk assessment, and security architecture reviews for Embedded Systems and IoT solutions.

  • Proficiency in C, CPP & Python programming language Familiarity with relevant standards and frameworks such as OWASP, NIST Cybersecurity Framework, and ISO 27001.

  • Solid understanding of software development lifecycles and methodologies, particularly in the Embedded Systems and IoT context.

Preferred Qualifications:

  • Proficiency in using security testing tools such as Burp Suite, Wireshark, Nessus, and Metasploit and DevSecOps principles.

  • Experience in automation of routine tasks using tools like Jenkins and/or scripting languages such as PowerShell, Ruby, or Python.

  • Understanding of Cloud based environments like Azure and AWS. At least one professional certification like ECSA Practical/CPENT/LPT/OSCP/OSWE/OSCE or similar involving practical exams.

Travel Percentage: 10%

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  0  0  0
Categories: Leadership Jobs Security Engineering Jobs

Tags: Automation AWS Azure Burp Suite C Cloud Computer Science DAST DevSecOps ECSA IoT ISO 27001 Jenkins Metasploit Nessus NIST OSCE OSCP OSWE OWASP Pentesting PowerShell Product security Python Risk assessment Ruby SAST SBOM Scripting SDLC Vulnerabilities Vulnerability management

Region: Asia/Pacific
Country: India

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information Security Specialist jobsInformation System Security Officer jobsSenior Security Analyst jobsSenior Cloud Security Engineer jobsSenior Cybersecurity Engineer jobsSystems Administrator jobsSystems Engineer jobsInformation Security Manager jobsSenior Information Security Analyst jobsSenior Network Security Engineer jobsIT Security Engineer jobsCyber Security Specialist jobsIT Security Analyst jobsChief Information Security Officer jobsSecurity Specialist jobsSecurity Consultant jobsInformation System Security Officer (ISSO) jobsInformation Systems Security Engineer jobsSenior Cyber Security Engineer jobsSenior Product Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior Information Security Engineer jobsCyber Security Architect jobsThreat Intelligence Analyst jobsSenior Software Engineer jobs
Java jobsEncryption jobsBash jobsTS/SCI jobsEDR jobsIDS jobsThreat detection jobsSQL jobsIPS jobsSplunk jobsSDLC jobsMalware jobsTerraform jobsFinance jobsTop Secret jobsSOC 2 jobsDocker jobsRMF jobsForensics jobsActive Directory jobsIntrusion detection jobsCompTIA jobsGIAC jobsOWASP jobsITIL jobs
VPN jobsHIPAA jobsDoDD 8570 jobsData Analytics jobsOSCP jobsIT infrastructure jobsAnsible jobsTCP/IP jobsSAP jobsCRISC jobsUNIX jobsCCSP jobsBanking jobsSANS jobsJavaScript jobsClearance Required jobsMITRE ATT&CK jobsSOAR jobsSOX jobsMachine Learning jobsSecurity strategy jobsZero Trust jobsDNS jobsNIST 800-53 jobsJira jobs