Jobs
>
Madison

    Senior Product Security Engineer - Madison, United States - Xylem

    Xylem
    Xylem Madison, United States

    4 days ago

    Default job background
    Description
    We're Hiring for a Senior Product Security Engineer

    If you are excited and passionate about helping #LetsSolveWater, consider joining our team today Xylem, Inc.

    is a leading global water technology company servicing more than 150 countries and is dedicated to solving the world's most challenging water issues.

    We are looking for individuals to join our mission by exceeding customer expectations through smart sustainable solutions. At Xylem, you will have the opportunity to solve water by participating in our paid Volunteer Program, Xylem Watermark


    As member of Xylem's Product Security team, the Senior Product Security Engineer is responsible for the implementation and execution of security programs and practices to support a growing, global water technology company.

    This position will work across software and firmware development teams to identify component and system level technical risks and evaluate critical failure points, determine technical security controls to mitigate risks, and work with cross functional teams to implement features according to product road maps.

    You will support security standards implementation, penetration testing and PSIRT programs of for our entire product portfolio. Your passion for security and in-depth knowledge of Product Security will ensure that you deliver high impact results.


    Essential Duties/Principal Responsibilities:
    Work with the business, devops and systems teams to support security integration into implementing new solutions, products and modules

    Conduct security architecture and technical assessments for a wide range of products, including embedded devices, enterprise software solutions, and mobile apps

    Engage in application and domain-specific threat modeling and attack surface analysis and reduction

    Provide guidance and leadership on best practices regarding security in software and firmware development

    Champion the Xylem security SDLC. This includes security testing, penetration testing, and identifying and fixing vulnerabilities in software and applications on all Xylem products.

    Implement or manage the implementation of common application security controls

    Assist other developers in remediating vulnerability findings by providing line-by-line guidance.

    Provide training and education to developers on software security best practices.

    Deliver key shared services to Xylem business units in the areas of software security, risk management, product inventory, and security testing


    Required Qualifications:
    Minimal education & experience, essential skills & abilities and required license/certification to perform this job.

    BS in Computer Science or equivalent with 7 to 10 years of experience

    Demonstrated expertise in product/application security architecture, Network security, application security, web services

    Experience with SAST, DAST, SCA and penetration testing tools

    In-depth experience identifying and protecting against web application and web service security vulnerabilities including those found in the OWASP Top 10 IoT Top 10 and CWE Top 25

    Meaningful experience in multiple programming languages

    Solid knowledge of the browser security model, crypto, and network security


    Attacker mindset:
    Real passion for breaking all the things unbreakable.

    Knowledge of secure infrastructure architectures, application architectures, encryption, Cloud Security and broader security technologies.

    Strong operating systems knowledge Windows (all flavors), Debian Linux

    Experience on firmware security" or "IoT security" or "platform Security" any one is a must.

    IoT network technologies (such as Bluetooth/BLE, WLAN, Z-Wave, Zigbee, identity/auth security)


    Experience with wireless technologies such as CDMA, E-HRPD, GSM, UMTS, TDS-CDMA, LTE-FDD / LTE-TDD, and 5Gexperience with Android RIL, Telephony, C and Embedded RTOS.

    Scripting knowledge Linux scripting (bash), Windows scripting, Python or Perl

    Awareness of secure coding, especially in OWASP top 10

    Good knowledge or experience in software security such as crypto, encryption, PKI, web security

    OSCP & GWAPT


    Preferred Qualifications:
    Relevant cyber security certifications

    Scripting skills (i


    e:
    Ruby, Python, Perl, shell scripts)

    Experience in software development

    Experience with cloud IaaS security operations

    Valuabl

    e:

    Preferred:
    forensic analysis skills


    SALARY:
    The estimated salary range for this position is $150,000 to $170,000 plus bonus.

    Starting pay is dependent on multiple factors, such as skills, experience and work location, and is not typically at the top of the range.

    At Xylem we offer a competitive compensation package with a generous benefit package, including Medical, Dental, Vision plans, 401(k) with company contribution, paid time off, paid parental leave and tuition reimbursement.


    At Xylem, we embrace diversity and strive to create avenues where employees feel valued and appreciated through our DE&I initiatives and Employee Resources Groups (ERG).

    Xylem is proud to be an Equal Employment Opportunity and Affirmative Action workplace.

    Xylem prohibits discrimination, harassment of any kind and does not discriminate in employment on the basis of race, color, religion, sex or sexual orientation (including pregnancy and gender identity), national origin, political affiliation, marital status, medical conditions or disability, genetic information, age, or other non-merit factors.


    Join the global Xylem team today Xylem is a team creating advanced technology solutions to the world's water challenges through developing new technologies and services that will improve the way water is used, conserved, and re-used in the future is central to our work.

    Our products and services move, treat, analyze, monitor, and return water to the environment, in public utility, industrial, residential, and commercial building services settings.

    Xylem also provides a leading portfolio of smart metering, network technologies and advanced analytics solutions for water, electric and gas utilities.


    Disclaimer:

    The information listed within this job description is designed to indicate the general nature of work expected for this position and shall not be viewed as a comprehensive inventory of all duties, responsibilities, and qualifications required in this position.

    Employees must be able to perform the essential functions of the position satisfactorily and if requested, reasonable accommodations will be made to enable employees with disabilities to perform the essential functions of their job absent undue hardship.

    Xylem reserves the right to modify this job description or assign other duties to this position as needed.
  • Oliver Bernard

    Security Engineers

    2 weeks ago

    Oliver Bernard Madison, United States

    Security Engineers - Hybrid - £550 Outside IR35 · We have partnered up with one of the leading consultancies that have just won a big AI project with one of the investment banks in London. They are offering hybrid working with offices based in Central London. · Skills: · Proven ...

  • Cloudera

    Staff Security Engineer

    2 weeks ago

    Cloudera Madison, United States

    Business Area: · Engineering · Seniority Level: · Mid-Senior level · Job Description: · At Cloudera, we empower people to transform complex data into clear and actionable insights. With as much data under management as the hyperscalers, we're the preferred data partner for the ...

  • Spero Technology

    Network Security Engineer

    3 days ago

    Spero Technology Madison, United States

    Qualifications We are looking for a skilled and experienced Network Security Engineer with expertise in both Fortinet and Cisco technologies · Bachelor's degree in Computer Science, Information Security, or a related field · Proven experience in configuring and managing Fortine ...

  • Cloudera

    Staff Security Engineer

    1 week ago

    Cloudera Wisconsin, United States Full time

    Job Description · : At Cloudera, we empower people to transform complex data into clear and actionable insights. With as much data under management as the hyperscalers, we're the preferred data partner for the top companies in almost every industry. Powered by the relentless inn ...

  • Canonical - Jobs

    Security Software Engineer

    2 days ago

    Canonical - Jobs Madison, United States

    Job Description · Job DescriptionThis is a general track for security-focused engineering in every team at Canonical, across all levels of seniority. Apply here if you are already an exceptional security-focused software engineer. · Most product engineering teams at Canonical inc ...

  • Beacon Technologies

    Data Security Engineer

    1 week ago

    Beacon Technologies Madison, United States Remote job Full time

    Beacon Technologies is seeking a Data Security Engineer for our client partner. The Data Security and Protection team is responsible for the design, implementation and maintenance of Data Security processes and supporting technologies with the aim to identify sensitive data, dete ...

  • Flexion

    Sr. Cloud Security Engineer

    1 week ago

    Flexion Madison, United States

    Your success starts with the right team. · We're looking for a Cloud Security Engineer with an unwavering passion for working in autonomous, self-directed teams to build and secure complex systems using lean, agile mindsets. You will deliver incremental business value with each s ...

  • Verve Industrial Protection

    Product Security Test Engineer

    6 days ago

    Verve Industrial Protection Madison, United States

    Job Description · Job Description · Verve, a Rockwell Automation Company, is on a mission to secure the world's critical infrastructure providers by bringing the tools and techniques of defense-in-depth strategies employed by best-in-breed IT practices to OT (Operational Techno ...

  • Springs Window Fashions

    IT Security Engineer

    6 days ago

    Springs Window Fashions Middleton, WI, United States

    Springs Window Fashions is hiring for a Senior IT Security Engineer based in our Middleton, WI corporate headquarters. · This is an onsite role, fully remote is not an option. · Springs Window Fashions has been part of the window treatments industry since 1939. Headquartered in ...

  • Flexion

    Sr. Cloud Security Engineer

    6 days ago

    Flexion Madison, United States

    Sr. Cloud Security Engineer - REMOTE · Why you want to work at Flexion: · We're looking for a Cloud Security Engineer with an unwavering passion for working in autonomous, self-directed teams to build and secure complex systems using lean, agile mindsets. You will deliver incre ...

  • Verve Industrial Protection

    Senior Product Security Engineer

    1 week ago

    Verve Industrial Protection Madison, United States

    Job Description · Job DescriptionVerve, a Rockwell Automation Company, is on a mission to secure the world's critical infrastructure providers by bringing the tools and techniques of defense-in-depth strategies employed by best-in-breed IT practices to OT (Operational Technology) ...

  • Verve Industrial Protection

    Product Security Test Engineer

    2 days ago

    Verve Industrial Protection Madison, United States

    Job Description · Job DescriptionVerve, a Rockwell Automation Company, is on a mission to secure the world's critical infrastructure providers by bringing the tools and techniques of defense-in-depth strategies employed by best-in-breed IT practices to OT (Operational Technology) ...

  • Zachary Piper Solutions, LLC

    Biomedical Engineer with Security Clearance

    1 week ago

    Zachary Piper Solutions, LLC madison wisconsin, United States

    Piper Health and Sciences is actively seeking a Biomedical Engineer to join a healthcare facility in Madison, Wisconsin. The Biomedical Engineer will manage the medical equipment program to ensure safe and compliant medical technology use. This is a Monday - Friday, traditional h ...

  • Zachary Piper Solutions, LLC

    Biomedical Engineer with Security Clearance

    1 week ago

    Zachary Piper Solutions, LLC madison wisconsin, United States

    Zachary Piper Solutions is seeking a Biomedical Engineer located in Aurora, CO. You will play a pivotal role in managing our medical equipment program and ensuring the safety, functionality, and compliance of medical technology within our clients healthcare facility. *** Will req ...

  • Findhelp, A Public Benefit Corporation

    Senior Security Engineering Business Analyst

    3 days ago

    Findhelp, A Public Benefit Corporation Madison, United States

    As a Senior Security Engineering Business Analyst at findhelp, you will play a key role in the planning and execution of features, enhancements, bugs, and other work done by our Cloud Infrastructure and Security engineering team. This work pertains to work we identify as being ne ...

  • Springs Window Fashions

    Senior IT Security Engineer

    1 day ago

    Springs Window Fashions Middleton, WI, United States

    · Springs Window Fashions is hiring for a Senior IT Security Engineer based in our Middleton, WI corporate headquarters. · This is an onsite role, fully remote is not an option. · Springs Window Fashions has been part of the window treatments industry since 1939. Headquartered ...

  • Sprocket Security

    Head of Product

    6 days ago

    Sprocket Security Madison, United States

    **Company Mission** - Our mission is to help secure as many companies as possible by using the best way of doing so, penetration testing. Sprocket Security prioritizes offensive security for enterprises, empowering them to build robust defense strategies based on individual busin ...

  • Exact Sciences Corporation

    Vp, Software Engineering

    16 hours ago

    Exact Sciences Corporation Madison, United States

    **Help us change lives** · At Exact Sciences, we're helping change how the world prevents, detects and guides treatment for cancer. We give patients and clinicians the clarity needed to make confident decisions when they matter most. Join our team to find a purpose-driven career, ...

  • Sprocket Security

    Director of Marketing

    6 days ago

    Sprocket Security Madison, United States

    **Company Mission** - Our mission is to help secure as many companies as possible by using the best way of doing so, penetration testing. Sprocket Security prioritizes offensive security for enterprises, empowering them to build robust defense strategies based on individual busin ...

  • Johnson Controls International

    Fire Install Manager

    1 week ago

    Johnson Controls International Madison, United States

    **What you will do** · The primary function of this position is to manage the Electronic Fire Alarm and Security delivery process, maintaining a high level of customer satisfaction while maximizing operational efficiencies, controlling costs within the district and meeting corpor ...