Senior Product Security Engineer
Location
United States
Posted
17 hours ago
Salary
$96K - $132K / year
Seniority
Senior
Job Description
Senior Product Security Engineer
Baxter International Inc.
• Working together with the product development teams to establish cyber security requirements, plans, and policies • Establish governance around vulnerability management in products • Assist in responses to and recovery from a security breach in conjunction with other team members and business units • Use tools to scan for and test possible product vulnerabilities; investigate security breaches • Stay ahead of and advised about industry zero day discoveries and react to assess products • Build technical documentation around the security of a product including threat modeling, privacy assessments, whitepapers, etc. • Participate in project planning and prioritisation of security related deliverables and activities
Job Requirements
- Bachelor’s degree or equivalent experience in Computer Science or a related field desired
- 2+ years of secure software development life-cycle experience
- Experience developing or analyzing secure coding practices with technologies such as ASP.Net (C#), SQL Server, HTML, C++
- Experience in crafting secure networks, systems, and application architectures
- Certification in security such as CAP, CCSP, or equivalent preferred but not required
- Keen attention to detail, critical thinking, and analytical abilities
- Proven interpersonal and communication (verbal, written, presentation) skills
- Proven understanding of application security throughout the software life-cycle
- Experience in addressing OWASP Top 10 vulnerabilities
Benefits
- medical and dental coverage that start on day one
- insurance coverage for basic life, accident, short-term and long-term disability, and business travel accident insurance
- Employee Stock Purchase Plan (ESPP)
- 401(k) Retirement Savings Plan (RSP)
- Flexible Spending Accounts
- educational assistance programs
- time-off benefits such as paid holidays, paid time off ranging from 20 to 35 days based on length of service, family and medical leaves of absence, and paid parental leave
- commuting benefits
- Employee Discount Program
- Employee Assistance Program (EAP)
- childcare benefits
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Understand, modify and assume shared ownership of complex and critical sensor detections and response capabilities • Gain expertise in core logic of the falcon sensor, becoming a resource for other developers within Crowdstrike who use (and build on top of) the technologies owned by our team. • Communicate design, constraints, guarantees and other aspects of the system. • Communicate and collaborate with other teams at Crowdstrike, including engineering teams who use our tools; adversary response teams; malware researchers; product and program managers; and others. • Write code in a variety of languages, including internally developed, non-imperative domain-specific languages. • Write unit, functional and integration tests • Diagnose and resolve issues discovered by customers or other engineering teams
Especialista de Ciberseguridad
SiigoEn Siigo impulsamos el crecimiento de las pymes, democratizando nuestras soluciones tecnológicas.
• Diseñar e implementar estrategias para proteger los activos de información de la compañía. • Definir y fortalecer políticas de seguridad en plataformas y entornos tecnológicos. • Participar en el diseño de arquitecturas seguras, accesos y modelos de monitoreo. • Promover la cultura de seguridad mediante capacitación y sensibilización interna. • Apoyar auditorías de seguridad y gestionar planes de acción derivados. • Fortalecer sistemas y protocolos de defensa con rutas de acción claras. • Implementar y evolucionar el Sistema de Gestión de Seguridad (SGSI). • Gestionar incidentes de seguridad: identificación, análisis y respuesta oportuna. • Detectar, investigar y mitigar vulnerabilidades en activos de información. • Liderar el monitoreo continuo para prevenir riesgos, fallas e incidentes. • Ejecutar pruebas controladas de intrusión para identificar debilidades. • Validar la efectividad de los controles y sistemas de defensa. • Generar informes ejecutivos basados en resultados de pruebas y análisis. • Analizar nuevas tendencias de ciberataques y definir mejoras preventivas. • Mantener actualizados y reforzados los mecanismos de seguridad. • Asegurar el cumplimiento de estándares y sistemas de gestión (SGC y SGSI).
• Handling daily remote security service operations • Monitoring and maintaining operations of the security systems • Responding to events and following standard operating procedures to resolve issues • Providing timely updates to stakeholders and upholding confidentiality of information • Maintaining high levels of professional conduct and exercising initiative to improve service
Senior Consultant – PCI Qualified Security Assessor
Bloom Equity PartnersInvesting in and acquiring enterprise software, technology and tech-enabled services companies.
• Lead cyber security and PCI DSS client engagements from initiation through delivery and closure. • Act as primary client point of contact, ensuring clear communication, scope control, and expectation management. • Deliver high-quality, concise, and actionable reports suitable for technical teams, senior management, and executive stakeholders. • Apply judgement and experience to complex risk and compliance issues, ensuring pragmatic, proportionate recommendations. • Perform PCI DSS assessments in line with PCI SSC requirements and provide expert advice on PCI DSS control implementation.
