Lead IT Security Engineer

Security EngineerSecurity EngineerFull TimeRemoteSeniorTeam 1,001-5,000Since 1970H1B SponsorCompany SiteLinkedIn

Location

Florida

Posted

3 days ago

Salary

$104.1K - $163.6K / year

Seniority

Senior

Bachelor Degree5 yrs expEnglishCloudCyber SecuritySDLC

Job Description

Lead IT Security Engineer

CONMED Corporation

• The Lead Information Security Engineer is a senior cybersecurity leader responsible for protecting the organization’s digital ecosystem across product development, manufacturing, and enterprise IT systems. • This role ensures the security of connected medical/surgical devices, intellectual property, and regulated environments, while maintaining compliance with cybersecurity guidance, ISO standards, and global regulations. • This position plays a critical role in enabling secure product innovation, patient safety, and operational resilience across the device lifecycle. • Lead detection and response for incidents affecting: manufacturing systems (OT/ICS), connected medical/surgical devices, and enterprise IT environments • Manage SOC operations with prioritization of IT security, production integrity, and supply chain impact • Investigate and respond to incidents involving intellectual property theft, disruptions and/or ransomware affecting production lines, and IT vulnerabilities

Job Requirements

  • Bachelor’s degree in Cybersecurity, Engineering, IT, or related field (or equivalent experience)
  • 5+ years of experience in cybersecurity, with exposure to regulated industries or manufacturing environments, with hands-on experience with SIEM/XDR platforms, endpoint, network, and cloud security and/or vulnerability and incident response programs
  • Strong knowledge of Security frameworks (NIST, ISO 27001), Identity and access management & network segmentation and Zero Trust principles
  • Experience in medical device, healthcare technology, or manufacturing (OT/ICS)
  • Familiarity with ISO27001, NIS2, SOX, NIST CF 800-53, & EU GDPR
  • Preferred Certifications: CISSP, CEH, GIAC & GICSP (Industrial Control Systems) or HCISPP (strong plus)
  • Experience with IT/Production security testing, Threat modeling (e.g., STRIDE), Secure SDLC practices

Benefits

  • Competitive compensation
  • Excellent healthcare including medical, dental, vision and prescription coverage
  • Short & long term disability plus life insurance -- cost paid fully by CONMED
  • Retirement Savings Plan (401K) -- CONMED matches your contributions dollar for dollar, with the potential for up to 7% per pay period
  • Employee Stock Purchase Plan -- allows stock purchases at discounted price
  • Tuition assistance for undergraduate and graduate level courses

Related Categories

Related Job Pages

More Security Engineer Jobs

Full TimeRemoteTeam 1,001-5,000Since 1973H1B No Sponsor

• Develop, maintain, and evolve enterprise data security and data loss prevention architectures aligned to business objectives, regulatory requirements, and data classification standards. • Champion the integration of datacentric security controls across endpoint, identity, collaboration, storage, and data platforms, ensuring secure by default and least privilege principles. • Design and operationalize Microsoft Purview Information Protection and DLP capabilities, including sensitivity labeling, classification, policy enforcement, and user experience considerations. • Architect and implement Microsoft Defender capabilities (Endpoint, Identity, Office 365, Cloud Apps) to protect data throughout its lifecycle. • Serve as a senior technical authority for data security and DLP across Windows, macOS, Windows Server, and Linux environments, ensuring consistent enforcement across heterogeneous platforms. • Integrate Microsoft Security capabilities with complementary platforms such as Varonis Data Security to provide comprehensive data protection. • Author and maintain data security and DLP standards, reference architectures, and technical guardrails aligned to NIST and internal security frameworks. • Convert business risks and regulatory obligations into technical requirements and traceable, measurable mitigation strategies. • Evaluate new platforms, tools, and vendors for strategic fit, security posture, and architectural impact. • Provide technical leadership, mentorship, and escalation support for complex data security and DLP challenges. • Communicate control posture, risks, and recommendations clearly to engineering, audit, and leadership stakeholders. • Continuously assess and improve data security posture through metrics, dashboards, and control validation. • Collaborate with PKI teams to manage certificate lifecycle operations, including issuance, renewal, revocation, and inventory. • Perform other duties as assigned.

Missouri
$150.8K - $224.6K / year
Job Closed
Full TimeRemoteTeam 1,001-5,000Since 2013H1B Sponsor

• Define the architecture and technical strategy for Databricks' AI security tooling platform • Lead the design and development of AI platform capabilities • Serve as the technical authority on AI security engineering • Mentor senior and mid-level engineers

California
$289.2K - $397.7K / year
Full TimeRemoteTeam 1,001-5,000Since 2013H1B Sponsor

• As a Staff Security Software Engineer on the AI Security team, you are a senior technical leader who sets the standards for how Databricks secures its AI and ML capabilities. • You lead AI red team engagements against production AI systems, conduct security architecture reviews for complex, multi-system AI features, and build the tooling and frameworks that scale the team's impact. • You are a subject matter expert in at least two AI security domains and you operate with significant autonomy- driving cross-team remediation, setting technical standards, and mentoring teammates in both offensive techniques and secure AI design.

California
ServiceNow logo

Sr Staff Software Engineer - Product Security

ServiceNow

ServiceNow provides cloud-based services that automate enterprise information technology operations. As an employer, ServiceNow offers a challenging, collaborat

Full TimeRemoteTeam 29,000Since 2004

Company Description It all started when engineer Fred Luddy wrote code that automated a tedious task for his coworker, Phyllis. She cried tears of joy. That moment inspired Fred to build a company that could do that for everyone-freeing people from busywork so they could focus on meaningful work. Today, ServiceNow is the AI control tower for business reinvention. Our ServiceNow AI platform brings together any AI, any data, and any workflow- helping 85% of the Fortune 500® work smarter, faster, and better. We're building an AI-native culture where technology and talent are unstoppable together. And we're just getting started. Join us to put AI to work for people. Job Description ServiceNow's Product Security organisation is building a dedicated Security R&D function - a software engineering team that builds security capabilities with the same rigour, CI/CD discipline, and quality standards as ServiceNow's product engineering organisation. We are looking for a Sr. Staff Security Engineer to be a technical anchor on this team. Security R&D operates in two complementary modes: open contribution to product engineering - writing code alongside product teams where security expertise adds value - and developing its own security capabilities, including internal tooling, externally facing product features, AI-powered security automation, and third-party integrations. This is a new team being stood up in Petah Tikva, Israel, co-located with ServiceNow's AI Security Research team. You will be one of the senior technical leaders shaping the team's engineering culture, architecture decisions, and technical direction from its inception. This role reports to the Sr. Engineering Manager, Security R&D. What You Will Do Lead Technical Design and Architecture - Drive architecture and design decisions for Security R&D's capabilities, ensuring systems are built for enterprise scale, reliability, and maintainability. - Lead technical design reviews and serve as the senior engineering voice on security tooling, automation, and platform services built by the team. - Define technical standards, code quality expectations, and engineering best practices for the Security R&D team. - Evaluate and integrate third-party security services alongside in-house AI-powered capabilities to maximise security review coverage. Build Security Capabilities at Platform Scale - Design and develop security tooling, automation, and platform-native services - both for internal use and as externally facing product features. - Contribute code directly into ServiceNow product engineering codebases where security domain expertise accelerates delivery and improves security outcomes. - Leverage ServiceNow's unique platform advantages - Agent Framework runtime, ACL enforcement, data layer, and workflow engine - to build capabilities that external vendors cannot replicate. - Collaborate with the AI Security Research team on AI agent security tooling, bringing production engineering discipline to an emerging domain. Mentor and Elevate the Team - Mentor junior and mid-level engineers, raising the technical bar across the team through code reviews, design guidance, and hands-on pairing. - Represent Security R&D in cross-functional discussions with product engineering leadership, demonstrating technical credibility as an engineering peer. - Contribute to hiring by helping define the technical interview bar and participating in candidate evaluations. What Makes This Role Unique - Builder-led culture: Security R&D is defined by engineering output, not advisory reviews. We build production security capabilities with the same discipline as product engineering. - Dual operating model: The team both contributes directly to product engineering and develops its own security products and services. - Platform advantage: ServiceNow owns the entire stack - runtime, ACLs, data layer, workflow engine. You will build security capabilities that no external vendor can replicate. - Founding team: This is a new team being built from scratch. You will shape its engineering culture, technical standards, and identity from day one. - AI intersection: The role sits alongside the AI Security Research team, placing you at the frontier of securing AI systems at enterprise scale. Qualifications To be successful in this role, you have: - 12+ years of progressive software engineering experience, with a track record of designing and building complex systems at enterprise scale. - Bachelor's degree in Computer Science, Engineering, or a related technical field. - Strong hands-on production experience with Python and Java. You are a builder who writes code daily, not an architect who only draws diagrams. - Deep expertise in distributed systems, scalability, high availability, and performance engineering in cloud environments. - Experience with security-related engineering - application security, infrastructure security, identity systems, fraud prevention, or trust & safety. You bring a security mindset to everything you build. - Familiarity with AI/ML systems, GenAI, or Agentic AI technologies. You don't need to be an ML researcher, but you should understand how these systems work and how to build tooling around them. - Experience contributing to large-scale product codebases in a collaborative engineering environment. You know how to earn trust with product engineering teams through code quality and delivery. - Strong technical communication skills - ability to articulate architecture decisions, write clear design documents, and influence technical direction across teams. Preferred - Experience with container and Kubernetes security, runtime security, OPA policy enforcement, or service mesh security. - Background in building security products or features that ship as part of a commercial platform. - Experience with AI-powered automation, LLM integration, or agentic frameworks in a production context. - Familiarity with enterprise security frameworks (NIST, SSDLC) and their translation into engineering requirements. - Experience working in a globally distributed engineering team across multiple time zones. Additional Information Work Personas We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here . To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service. Equal Opportunity Employer ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements. Accommodations We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact globaltalentss@servicenow.com for assistance. Export Control Regulations For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities. From Fortune. ©2026 Fortune Media IP Limited. All rights reserved. Used under license. .

Israel