-
Product Cybersecurity Engineer
5 days ago
Emerson Prior Lake, United StatesThis is an important position within Emerson's Cross Portfolio and Technology Innovation organization, one of the leading IoT solutions providers to the process automation industry. You will be responsible for designing, developing, and implementing cybersecurity strategies for o ...
-
Product Cybersecurity Engineer
3 days ago
Emerson Prior Lake, United StatesThis is an important position within Emerson's Cross Portfolio and Technology Innovation organization, one of the leading IoT solutions providers to the process automation industry. You will be responsible for designing, developing, and implementing cybersecurity strategies for o ...
-
Product Cybersecurity Engineer
3 days ago
Emerson Electric Company Shakopee, United StatesNEED: Bachelors degree in Engineering or Science from an engineering school 4 years or more years of applicable experience Familiarity with a programming language such as Java, C/ C , .Net or Python Legal authorization to work in the United States Security Engineer, Cybersecurity ...
-
Product Cybersecurity Engineer
5 days ago
Emerson Shakopee, United StatesThis is an important position within Emerson's Cross Portfolio and Technology Innovation organization, one of the leading IoT solutions providers to the process automation industry. You will be responsible for designing, developing, and implementing cybersecurity strategies for o ...
-
Product Cybersecurity Engineer
4 days ago
Emerson Shakopee, United StatesThis is an important position within Emerson's Cross Portfolio and Technology Innovation organization, one of the leading IoT solutions providers to the process automation industry. You will be responsible for designing, developing, and implementing cybersecurity strategies for o ...
-
Product Cybersecurity Engineer
6 days ago
Emerson Group Shakopee, United StatesJob Description · This is an important position within Emerson's Cross Portfolio and Technology Innovation organization, one of the leading IoT solutions providers to the process automation industry. You will be responsible for designing, developing, and implementing cybersecuri ...
-
Dual Study Computer Science
1 week ago
Cascade Innovations Landfall, United StatesOverview · The technology company Rohde & Schwarz is a pioneer in creating a secure and connected world with its leading solutions in the areas of Test & Measurement, Technology Systems, and Networks & Cybersecurity. Founded over 85 years ago, the company is a reliable partner fo ...
-
Senior Firmware Engineer
5 days ago
Abbott Laboratories Saint Paul, United StatesJob Description · Abbott is a global healthcare leader that helps people live more fully at all stages of life. Our portfolio of life-changing technologies spans the spectrum of healthcare, with leading businesses and products in diagnostics, medical devices, nutritionals and bra ...
-
Firmware Engineer II
5 days ago
Abbott Laboratories Saint Paul, United StatesJob Description · Abbott is a global healthcare leader that helps people live more fully at all stages of life. Our portfolio of life-changing technologies spans the spectrum of healthcare, with leading businesses and products in diagnostics, medical devices, nutritionals and bra ...
-
Dual Study: B. Eng. Aerospace Engineering
1 week ago
Nexus Dynamics Bayport, United StatesBayport is a leading company in the European defense industry with a global reach. The company, headquartered in Taufkirchen near Munich, develops sensor solutions for defense and security applications. · As a technology leader, Bayport drives the development of defense electroni ...
-
Software Engineer II- Tech Lead
1 week ago
020 Travelers Indemnity Co Saint Paul, United States Full timeWho Are We? · Taking care of our customers, our communities and each other. That's the Travelers Promise. By honoring this commitment, we have maintained our reputation as one of the best property casualty insurers in the industry for over 160 years. Join us to discover a cultu ...
-
Firmware Engineer II
5 days ago
Abbott Laboratories St. Paul, United States OTHERWorking at Abbott · At Abbott, you can do work that matters, grow, and learn, care for yourself and your family, be your true self, and live a full life. You'll also have access to: · Career development with an international company where you can grow the career you dream of. · F ...
-
Senior Firmware Engineer
1 week ago
Abbott Laboratories St. Paul, United States Full timeWorking at Abbott · At Abbott, you can do work that matters, grow, and learn, care for yourself and your family, be your true self, and live a full life. You'll also have access to: · Career development with an international company where you can grow the career you dream of. · F ...
-
FedRAMP SOC Analyst
1 week ago
Elevance Health Mendota Heights, United StatesWARNING: Please beware of phishing scams that solicit interviews or promote work-at-home opportunities, some of which may pose as legitimate companies. Elevance Health requires a completed online application for consideration of employment for any position. We will never ask you ...
-
Data Loss Prevention Engineer
1 week ago
Insight Global Inver Grove Heights, United StatesJob Description · One of Insight Global's largest agricultural clients is seeking to add a Data Loss Prevention Engineer to their CyberSecurity team. This person will be joining a team of one other sr. resource. This role is all about ensuring that the platform is maintained, ma ...
-
Software Engineer II
6 days ago
Boston Scientific Arden Hills, United StatesAdditional Location(s): N/A Diversity - Innovation - Caring - Global Collaboration - Winning Spirit- High Performance At Boston Scientific, we'll give you the opportunity to harness all that's within you by working in teams of diverse and high-performing employees, tackling some ...
-
Operational Technology
4 days ago
Polaris Plymouth, United StatesAt Polaris Inc., we have fun doing what we love by driving change and innovation. We empower employees to take on challenging assignments and roles with an elevated level of responsibility in our agile working environment. Our people make us who we are, and we create incredible p ...
-
Operational Technology
4 days ago
Polaris Industries Inc Plymouth, United StatesAt Polaris Inc., we have fun doing what we love by driving change and innovation. We empower employees to take on challenging assignments and roles with an elevated level of responsibility in our agile working environment. Our people make us who we are, and we create incredible p ...
-
Systems Engineer, Strategic Accounts
1 week ago
Palo Alto Networks Minneapolis, MN, United StatesCompany DescriptionOur MissionAt Palo Alto Networks everything starts and ends with our mission:Being the cybersecurity partner of choice, protecting our digital way of life.Our vision is a world where each day is safer and more secure than the one before. We are a company built ...
-
Product Manager
4 days ago
NetSPI Minneapolis, United States· Job Title : Product Manager – PTaaS (Pen Testing as a Service) & Vulnerability Management Location : RemoteNetSPI is a dynamic cyber security company headquartered in Minneapolis. We are dedicated to offering cutting-edge security solutions that empower organizations to protec ...
Senior Cybersecurity Engineer - Saint Paul, United States - SPECTRAFORCE
Description
Job Title: Senior Cybersecurity Engineer
Location: St Paul, MN, - Hybrid
Duration: 12 months (with temp to hire potential)
Job Summary:
As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering team members to identify business, technology and product risks and vulnerabilities in the early stages and embed security requirements to address and validate them.
A lot of this is done by conducting security assessments where the activities will include threat modeling, attack modeling, security DFMEA, vulnerability assessment, triaging, and reporting.
This Sr. Cyber Security Engineer will also collaborate with product architects, system engineers, developers, and testers to implement secure designs by employing secure communications, network/device access control, authentication, authorization, cryptography, audit, forensics, and anomaly and misuse detection to provide information security (integrity, confidentiality, availability, and non-repudiation).
Core Job Responsibilities (others may be added):
Define and develop processes and methodologies for designing secure systems
Engage with teams to conduct security risk assessments and conform to organizational remediation/mitigation timelines in different phases of the secure product development lifecycle
Provide product security support to development teams, including reviewing and explaining security tools and processes, providing vulnerability explanations and remediation guidance
Optimize product/system security by creating and reviewing architecture and detailed design solutions that reflect best practices
Coordinate product security program metrics and reporting
Support ongoing vulnerability and patch management through tracking, triaging and prioritizing across all products to minimize the potential security risk
Help drive system and product requirements to meet the regulatory and compliance requirements (like GDPR, ISO, ISA/IEC, SOC2, FedRAMP)
Assist with training and mentoring of security champions
Partner with third-party vendors to deliver software security tools and services
Provide expert consultation on application security requirements and best practices with vulnerability scanning and secure application design
Partner closely on security operations tasks with cross-functional teammates in IT, DevOps, Engineering, Compliance, and Test
Manage 3rd party partners and vendors supplying cybersecurity-related services
Identify the design implications within a platform and system and work with teams to minimize vulnerabilities
Influence program decisions to reduce the risk exposure of the company
Participate in Zero-day remediation, Hotfixes, and Incident Response efforts
Identify and review test coverage for the security aspects of the system
Assist in responses to external audits, customer questionnaires, penetration tests and vulnerability assessments
Self-motivated to stay engaged with the market on new security products, threats and vulnerabilities and to apply innovative approaches in technology, marketing and service operations to meet those needs.
Basic Qualifications:
Bachelor's or Master's degree in Computer Science, Electrical Engineering or similar engineering discipline with an emphasis on cyber security
8+ years of cumulative experience in software development and engineering expertise in Application, Network, Cloud, Mobile, IoT, ICS, Embedded systems, APIs
5+ years of expertise in Product Security, Security Architecture and Security Assessment: Threat Modeling, Secure Development, Risk Assessment, Threat Analysis, DFMEA, Penetration testing, SDLA tools
Strong understanding of operational technology principles, concepts, and techniques
Strong knowledge of current security threats, techniques, and landscape, as well as a self-motivated desire to research current in the cybersecurity landscape
Strong knowledge of OpenSSL, TLS mutual authentication, PKI, digital signatures, and certificate management
Ability to research, develop, and keep abreast of tools, techniques, and process improvements in support of security detection and analysis following current and emerging threats
Implementation experience or knowledge of security controls
Should have good knowledge of security containers, hands-on experience with DevSecOps principles, and a good handle on end-to-end DevSecOps processes
Technical understanding of cloud-native architecture and engineering best practices (AWS, Azure, Google Cloud)
Working experience with OWASP Top 10 for web applications
Knowledge of penetration testing techniques, application security vulnerabilities, OWASP Top 10, SANS 25, CWE, etc
Knowledge of Security Industry Standards and Frameworks: e.g., NIST, ISA/IEC, GDPR, SOC2
Excellent verbal and written communication skills, with the ability to communicate to all levels of the organization.
Preferred Qualifications
Familiar with DISA STIG assessment and implementation for Linux and/or Windows systems
Desirable security certification(s): GICSP, GCLD, GSOC, GDSA, or any other relevant certifications.