Description

You will provide cybersecurity guidance and expertise to product development teams and business leaders throughout all phases of the software development lifecycle. You will architect security and privacy by design into software applications for mobile, embedded systems, and cloud environments. You will drive secure SDLC activities, including security requirements, architectures, threat models, and testing. You will periodically assess and refine security policies, standards, and compliance metrics.

You will quantify product risk and identify appropriate security controls, and review product architectures for vulnerabilities while collaborating on remediation strategies. You will coordinate with third‑party penetration testing teams to ensure comprehensive security assessments. You will maintain awareness of current security threats and vulnerabilities affecting our products, support incident response operations, and lead vulnerability remediation activities. You will also drive security awareness and training initiatives across the organization.

• Provide cybersecurity guidance to product teams and business leaders across the software development lifecycle.
• Architect security and privacy by design for mobile, embedded, and cloud applications.
• Drive secure SDLC activities: define security requirements, create architectures, conduct threat modeling and testing.
• Assess and refine security policies, standards, and compliance metrics.
• Quantify product risk, identify controls, and review architectures for vulnerabilities.
• Coordinate third‑party penetration testing and ensure comprehensive assessments.
• Support incident response and lead vulnerability remediation efforts.
• Lead security awareness and training initiatives organization‑wide.

Requirements

We seek candidates with a bachelor’s degree or higher in engineering, cybersecurity, or a related technical field and 5‑10 years of product or application cybersecurity experience. Experience as a software developer or engineer with cybersecurity expertise and strong knowledge of secure SDLC practices, security architectures, and compliance activities is required. Proven delivery using agile methodologies, solid understanding of security threats, attack vectors, and appropriate controls, and excellent problem‑solving and analytical skills are essential. Strong communication and interpersonal skills to convey complex security concepts, familiarity with frameworks such as NIST, ISO 27001, and GDPR, and relevant certifications (e.g., CISSP, CEH) are a plus.

• Bachelor’s degree or higher in engineering, cybersecurity, or related field.
• 5–10 years experience in product/application cybersecurity.
• Background as software developer/engineer with strong secure SDLC knowledge.
• Experience with agile delivery and understanding of security threats and controls.
• Excellent analytical, problem‑solving, and communication skills.
• Familiarity with NIST, ISO 27001, GDPR; certifications such as CISSP or CEH a plus.

Benefits

We offer a competitive salary with performance‑based bonuses and a comprehensive benefits package including health, dental, and retirement plans. Opportunities for professional development, continuous learning, and a collaborative, inclusive work environment are provided.

• Competitive salary with performance‑based bonuses.
• Comprehensive health, dental, and retirement benefits.
• Professional development and continuous learning opportunities.
• Collaborative and inclusive work environment.

Training + Development

Interview process

Visa Sponsorship

Security clearance