Job Summary
A household appliance and consumer goods company is filling a position for a Remote Product Software Security Engineer.
Core Responsibilities Include:
- Elevating application, system and data security capabilities in the product engineering community through the creation, implementation, and execution of specifications, guidelines, SoP’s, Policies and best practices
- Establishing best practices for the effective avoidance, identification, and resolution of security weaknesses in products, services, and processes
- Working with development teams to solve difficult embedded software security and data security problems as they pertain to Connected Product security (Internet of Things) and Application Security
Skills and Requirements Include:
- Familiarity with the Consumer IoT (Internet of Things), Secure software, data and SDLC experience (e.g. MS SDL, OpenSAMM, FOSSID, CMMI-Dev+Secure)
- Demonstrable knowledge and experience in one or more of the following areas: System security engineering; Embedded device security; Data security and privacy; Security Testing / Penetration Testing; Mobile / Cloud application security
- Knowledge of common security standards and best practices, such as NIST 800-53/800-160, ISO 270xx, CWE, CVSS, OWASP Top 10, CERT Secure Coding Standards
- Experience leading secure architecture, design, and code reviews
- Direct development experience RTOS in languages including C/C++ (x86 or ARM), Python, and Java
- Familiarity with security vulnerability detection and security test automation tools such as Qualys, Nessus, Klocwork etc.
