Sr Infosec Engineer

About the Role

In this role you will develop the tools necessary to keep our company's assets and information secure, including Cloud Security, Infrastructure Security, Product Security, Defensive Engineering, and Identity and Access Management.

What You'll Do

• Design, develop, and implement robust security protocols for IoT devices and networks

• Conduct regular vulnerability assessments to identify security weaknesses in IoT system

• Continuously monitor IoT systems for security breaches and respond to incidents promptly

• Collaborate with Security Ops & Infosec leadership in developing a mitigation plan for control gaps, TTP’s, IOC’s & Threat Advisories

• Ensure compliance with industry standards and regulatory requirements related to IoT Security and develop and maintain relevant policies, procedures, and best practices

• Assess the potential impact of vulnerabilities on business operations and prioritize remediation efforts accordingly

• Work closely with IoT security vendors and internal teams to enhance the security state of the environment

Who You Are

• Bachelor's degree in Computer Science, Information Security, or a related field. 

• 5+ years of experience in IoT Security, Vulnerability Management or a related field

• Proficiency in IoT security tools and technologies, and experience with security frameworks and standards (e.g., NIST, ISO 27001)

• Strong analytical and problem-solving skills, with the ability to assess complex security issues and develop effective solutions

• Excellent written and verbal communication skills, with the ability to convey technical information to non-technical stakeholders

• Proven understanding of Common Vulnerability Frameworks (CVE, CVSS, OWASP Top 10)

• Educate and train staff on IoT security best practices and emerging threats

• Create and maintain comprehensive documentation related to IoT security protocols, incidents, and remediation efforts