-
Security Engineer
2 weeks ago
Talent Software Services St Paul, United StatesSample Tasks ssist with evaluation of architecture interfacing with other state/federal/local systems. · ssist with assessing the security of any equipment needed. · ssist with the evaluation of data integrity and data security. · ssist with ensuring all background check compl ...
-
FIM Security Engineer
2 weeks ago
Beacon Hill Staffing Group St Paul, United States6-12 month Contract to Hire. FULLY REMOTE They are looking for someone who has File Integrity Monitoring (FIM) and familiarity with PCI and SOX compliance. The role is focused more on governance and compliance, not a hand on engineer. Must haves: · 7+ years within IT Security at ...
-
Senior Product Security Engineer
2 weeks ago
Trane Technologies St Paul, United StatesAt Trane Technologies TM and through our businesses including Trane and Thermo King , we create innovative climate solutions for buildings, homes, and transportation that challenge what's possible for a sustainable world. We're a team that dares to look at the world's challenges ...
-
Principal Cyber Security Engineer
2 weeks ago
Boston Scientific St Paul, United StatesAdditional Location(s): · N/A · Diversity - Innovation - Caring - Global Collaboration - Winning Spirit - High Performance · At Boston Scientific, we'll give you the opportunity to harness all that's within you by working in teams of diverse and high-performing employees, tack ...
-
Product Security Engineer Contracttohire
3 days ago
Pira Consulting | Professional Technology Staffing Agency St Paul, United StatesThis position is eligible for a Hybrid work schedule (3 or more days on site a week) and will be based out of our St. Paul, MN location. Tue - Thurs on site. · 6 - 12 Month for contract to hire · Job Summary: · As a Senior Cybersecurity Engineer you will be responsible for wo ...
-
Lead Information Security Engineer
3 weeks ago
Wells Fargo St Paul, United StatesAbout this role: · At Wells Fargo, we are looking for talented people who will put our customers at the center of everything we do. We are seeking candidates who embrace diversity, equity and inclusion in a workplace where everyone feels valued and inspired. Help us build a bette ...
-
Network Security Engineer(Meraki, VPN)
1 week ago
K-Tek Resourcing LLC St Paul, United StatesNetwork Security Engineer(Meraki, VPN) · Location: St. Paul, MN (hybrid) · Interview slots : available · Job Description: · Top Requirements: · Palo Alto, Global Protect VPN · (willing to train on Global Protect, but experience with another VPN is mandatory), & · Meraki . · P ...
-
Application security engineer
3 weeks ago
Tata Consultancy Services St Paul, United StatesTechnical/Functional Skills · Threat Modelling SAST (Static Application Security Test) DAST (Dynamic Application Security Test) Microfocus Web Inspect Enterprise / Scan Central DAST · Roles & Responsibilities · As a security engineer, you will be responsible for managing Appli ...
-
Security Architect/ Engineer
2 weeks ago
US Tech Solutions St Paul, United States Part timeSix (6) years experience in a security architect or engineer role. · Three (3) years experience in network engineering, including firewall management. · Four (4) or more engagements, within the last ten (10) years, in a security architect or engineer role where the engagement w ...
-
Application Security engineer
3 weeks ago
Diverse Lynx St Paul, United StatesTechnical/Functional Skills · Threat Modelling SAST (Static Application Security Test) DAST (Dynamic Application Security Test) Microfocus Web Inspect Enterprise / Scan Central DAST · Roles & Responsibilities · As a security engineer, you will be responsible for managing Applica ...
-
Senior Security Engineer
2 weeks ago
3M Healthcare US Opco LLC St Paul, United StatesThank you for your interest in working for our Company. Recruiting the right talent is crucial to our goals. On April 1, 2024, 3M Healthcare underwent a corporate spin-off leading to the creation of a new company named Solventum. We are still in the process of updating our Career ...
-
Cyber Security Engineer
6 days ago
Xcel Energy St Paul, United StatesAre you looking for an exciting job where you can put your skills and talents to work at a company you can feel proud to be a part of? Do you want a workplace that will challenge you and offer you opportunities to learn and grow? A · position at Xcel Energy could be just what yo ...
-
Application Security Engineer
3 weeks ago
Lincoln Financial Group St Paul, United States**Alternate Locations:** · Work from Home · **Work Arrangement:** · Remote : Work at home employee residing outside of a commutable distance to an office location. · **Relocation assistance:** · is not available for this opportunity. · **Requisition #:** · 72530 · **The R ...
-
Synchrony St Paul, United StatesJob Description: · Role Summary/Purpose: · The VP, Security Engineering SRE Operations Leader will oversee and optimize the reliability, availability, and performance of our security technology stack. You will be responsible for leading a team that provides operational 24x7 suppo ...
-
Insight Global St Paul, United StatesJob Description · Insight Global is seeking a Security Software Engineer in Costa Rica to join one of our largest medical device clients. As a Security Software Engineer, you will play a critical role in ensuring the security and integrity of their software systems during the dig ...
-
Senior Product Security Engineer
3 weeks ago
Trane Technologies St Paul, United StatesAt · Trane Technologies TM · and through our businesses including · Trane · and · Thermo King · , we create innovative climate solutions for buildings, homes, and transportation that challenge what's possible for a sustainable world. We're a team that dares to look at the w ...
-
Senior Product Security Engineer
3 weeks ago
Trane Technologies St Paul, United StatesAt Trane Technologies TM and through our businesses including Trane and Thermo King , we create innovative climate solutions for buildings, homes, and transportation that challenge what's possible for a sustainable world. We're a team that dares to look at the world's challenge ...
-
Principal Cyber Security Engineer
3 weeks ago
Boston Scientific St Paul, United StatesAdditional Location(s): N/A · Diversity - Innovation - Caring - Global Collaboration - Winning Spirit - High Performance · At Boston Scientific, we'll give you the opportunity to harness all that's within you by working in teams of diverse and high-performing employees, tacklin ...
-
Highmark Health St Paul, United StatesCompany : · Highmark Health · Job Description : · JOB SUMMARY · The Identity & Access Management Senior Security Engineer is responsible for acting as resource, leader, and peer coach with other engineers in the development, testing, implementation, and integration of Identity an ...
-
Staff Tech St Paul, United States Part timeThe work is expected to be done remotely in a hybrid manner. On-site location may vary in the Saint Paul/ Metro area. The resource is expected to work 20-30 hours a week. Hours may vary per week dependent upon the urgency of their current project. The resource will be on-site 10- ...
Senior Product Security Engineer - St Paul, United States - Trane Technologies
Description
At Trane Technologies TM and through our businesses including Trane and Thermo King , we create innovative climate solutions for buildings, homes, and transportation that challenge whats possible for a sustainable world. We're a team that dares to look at the world's challenges and see impactful possibilities. We believe in a better future when we uplift others and enable our people to thrive at work and at home. We boldly go.
Be a part of our mission As a world leader in creating comfortable, sustainable and efficient environments, its our responsibility to put the planet first. For us at Trane Technologies, sustainability is not just how we do businessit is our business. Do you dare to look at the world's challenges and see impactful possibilities? Do you want to contribute to making a better future? If the answer is yes, we invite you to consider joining us in boldly challenging whats possible for a sustainable world.
If this sounds exciting to you, read on to learn more about who we are and what we believe in:
We uplift others we believe in providing an opportunity for all and building a culture that is diverse, inclusive, and respectful. We lift each other up and care about the success and well-being of others.
We make an impac t we believe that what we do has the potential to change the world. We succeed together by striving daily to create a lasting, positive impact on the planet.
We thrive at work and at home we are supported by meaningful benefits, compensation, learning and development solutions, and opportunities for rewarding careers. We are firmly committed to the well-being and safety of our people.
This position is eligible for a Hybrid work schedule (3 or more days on site a week) and will be based out of our St. Paul, MN location.
Job Summary ?
As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering team members to identify business, technology and product risks and vulnerabilities in the early stages and embed security requirements to address and validate them. A lot of this is done by conducting security assessments where the activities will include threat modeling, attack modeling, security DFMEA, vulnerability assessment, triaging, and reporting.
This Sr. Cyber Security Engineer will also collaborate with product architects, system engineers, developers, and testers to implement secure designs by employing secure communications, network/device access control, authentication, authorization, cryptography, audit, forensics, and anomaly and misuse detection to provide information security (integrity, confidentiality, availability, and non-repudiation).
Core Job Responsibilities (others may be added):
Define and develop processes and methodologies for designing secure systems
Engage with teams to conduct security risk assessments and conform to organizational remediation/mitigation timelines in different phases of the secure product development lifecycle
Provide product security support to development teams, including reviewing and explaining security tools and processes, providing vulnerability explanations and remediation guidance
Optimize product/system security by creating and reviewing architecture and detailed design solutions that reflect best practices
Coordinate product security program metrics and reporting
Support ongoing vulnerability and patch management through tracking, triaging and prioritizing across all products to minimize the potential security risk
Help drive system and product requirements to meet the regulatory and compliance requirements (like GDPR, ISO, ISA/IEC, SOC2, FedRAMP)
Assist with training and mentoring of security champions
Partner with third-party vendors to deliver software security tools and services
Provide expert consultation on application security requirements and best practices with vulnerability scanning and secure application design
Partner closely on security operations tasks with cross-functional teammates in IT, DevOps, Engineering, Compliance, and Test
Manage 3rd party partners and vendors supplying cybersecurity-related services
Identify the design implications within a platform and system and work with teams to minimize vulnerabilities
Influence program decisions to reduce the risk exposure of the company
Participate in Zero-day remediation, Hotfixes, and Incident Response efforts
Identify and review test coverage for the security aspects of the system
Assist in responses to external audits, customer questionnaires, penetration tests and vulnerability assessments
Self-motivated to stay engaged with the market on new security products, threats and vulnerabilities and to apply innovative approaches in technology, marketing and service operations to meet those needs.
Basic Qualifications
Bachelor's or Master's degree in Computer Science, Electrical Engineering or similar engineering discipline with an emphasis on cyber security
8+ years of cumulative experience in software development and engineering expertise in Application, Network, Cloud, Mobile, IoT, ICS, Embedded systems, APIs
5+ years of expertise in Product Security, Security Architecture and Security Assessment: Threat Modeling, Secure Development, Risk Assessment, Threat Analysis, DFMEA, Penetration testing, SDLA tools
Strong understanding of operational technology principles, concepts, and techniques
Strong knowledge of current security threats, techniques, and landscape, as well as a self-motivated desire to research current in the cybersecurity landscape
Strong knowledge of OpenSSL, TLS mutual authentication, PKI, digital signatures, and certificate management
Ability to research, develop, and keep abreast of tools, techniques, and process improvements in support of security detection and analysis following current and emerging threats
Implementation experience or knowledge of security controls
Should have good knowledge of security containers, hands-on experience with DevSecOps principles, and a good handle on end-to-end DevSecOps processes
Technical understanding of cloud-native architecture and engineering best practices (AWS, Azure, Google Cloud)
Working experience with OWASP Top 10 for web applications
Knowledge of penetration testing techniques, application security vulnerabilities, OWASP Top 10, SANS 25, CWE, etc
Knowledge of Security Industry Standards and Frameworks: e.g., NIST, ISA/IEC, GDPR, SOC2
Excellent verbal and written communication skills, with the ability to communicate to all levels of the organization.
Preferred Qualifications
Familiar with DISA STIG assessment and implementation for Linux and/or Windows systems
Desirable security certification(s): GICSP, GCLD, GSOC, GDSA, or any other relevant certifications.
Whats in it for you:
Benefits kick in day one
6% 401K match, additional 2% core contribution = 8% overall match
3 weeks of vacation, plus site paid holidays
Base Compensation Range is $70,000 to $121,800
o Disclaimer: This base salary range is based on US national averages. Actual base pay could be a result of seniority, merit, geographic location where the work is performed.
We are committed to achieving workforce diversity reflective of our communities. We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identify, national origin, pregnancy, age, marital status, disability, status as a protected veteran, or any legally protected status.