You will apply security and privacy standards across a digital product portfolio including cloud, IoT, software, and mobile solutions.
Responsibilities
Perform cybersecurity risk management and threat modeling to ensure security and privacy by design.
Provide technical security and privacy guidance to project teams.
Organize security assurance activities including penetration testing, vulnerability assessments, static code analysis, fuzzing, and code reviews.
Conduct post-market vulnerability assessments and support incident response activities.
Advise senior management regarding cybersecurity and privacy risks.
Required Skills
5+ years of experience in secure software development lifecycle (SDLC) activities.
Academic degree in computer science, information technology, IT security, or a related technical field.
Hands-on experience with SAST, DAST, code reviews, penetration testing, and cloud solutions.
Practical knowledge of conducting security risk assessments and threat modeling.
Familiarity with DevOps, IT security, and cryptography.
Experience complying with regulations and frameworks such as GDPR, HIPAA, MDR, FDA, NIST CSF, ISO 27k, CIS Controls, NIST SP 800-series, and OWASP ASVA/MASVS.
Fluency in written and spoken English.
Experience working within international teams.
Preferred Skills
Professional certifications such as CSSLP or CISSP.