Product Security Engineer

Product Security Engineer page is loaded## Product Security Engineerremote type: Hybridlocations: PUN MIC T 4time type: Full timeposted on: Posted Todayjob requisition id: R-25149Join us in pioneering breakthroughs in healthcare. For everyone. Everywhere. Sustainably. Our inspiring and caring environment forms a global community that celebrates diversity and individuality. We encourage you to step beyond your comfort zone, offering resources and flexibility to foster your professional and personal growth, all while valuing your unique contributions.Responsible for providing Cybersecurity locally during the development, implementation and operational stages of assets, like e.g. portfolio elements, software systems, networks and data centers.**Job Description:**You will also be working in a fast-pace environment driving security, performance and reliability from software, infrastructure and cloud environments on behalf of Varian. You will tackle challenging, unique situations every day and work with other functions and employees within Varian. You will be looked upon as a subject matter expert (SME) surrounding software security technologies and advocate to fellow team members on making reliable technical decisions around supporting and deploying engineering complex systems.The successful candidate for this role will have strong analytical and troubleshooting skills, experience in securing multi technology platforms and brands of product, solid communication skills and a desire to tackle the complex problems of scale which are unique.**Responsibilities:*** Integration of cyber-security considerations into product design, implementation, review, update, and EOL management* Monitor product cyber-security threats and vulnerabilities, perform planned and on-demand **Cybersecurity Risk Assessment & Threat Modeling** activities; work with the architecture and engineering teams to design and prioritize mitigating solutions* Plan and coordinate comprehensive security assessments (e.g. **Product Penetration Testing**), analyze and report results, design, and direct remediation* Should be able to lead the **static security code analysis** and **Software Composition Analysis*** Provide hands-on technical support expertise in general **SW design and development**, system engineering, IT and networking as necessary* Communicate/document implementation approaches and patterns for standards-based information security objectives (NIST 800-53, ISO 27002, ISO27001 etc.)* Follow latest trends and risks in the cybersecurity landscape and develop strategies and roadmap to continuously improve the security or our products.* Work with geographically distributed development teams in USA, Germany, Switzerland, and India.**Position Requirements:*** Bachelor’s degree in software engineering, computer science or related discipline.* 5+ years professional work experience developing and testing software products.* Experience with C# /.NET or C++ programming.* Experience with web programming and technologies.* Experience with Code scanning tool such as Veracode, SonarQube, Checkmarx, Netsparker, Blackduck etc.* An understanding of architectural or security architecture principles* Understanding and experience of cloud computing concepts and cloud security principles* A deep understanding of Cyber Security and Information Security principles* Knowledge and understanding of security objective frameworks and standards.* Understanding of CI/CD (Jenkins, Azure DevOps, GitLab, GitHub)* Should be well versed with Owasp Top 10, SANS 25 etc.* Prefer candidates with some Cloud architecture skills, preferably Microsoft Azure**Personal Attributes:*** Excellent communication and teamwork skills, with fluent written and spoken English.* Energetic self-starter with creative approaches to solving complex problems.* Self-motivated and problem solving skills.* Ability to handle high pressure situations & multitasking.* Ability to communicate effectively with cross cultural teams spanning globally* Open to travel to remote locations nationwide as needed.* Must have strong analytical abilities and out of the box thinking abilities.* Flexible work schedule to meet demands of position and call-schedule.* Ability to collaborate on a team of like-minded people; we strongly value resourcefulness and proactiveness in gathering information and sharing ideas* Ability to work independently as well as participating in a team of professionals.* Demonstrated mature levels of knowledge and experience with current software technologies.* Good time management, organization and inter-personal skills.**Who we are**: We are a team of more than 72,000 highly dedicated Healthineers in more than 70 countries. As a leader in medical technology, we constantly push the boundaries to create better outcomes and experiences for patients, no matter where they live or what health issues they are facing. Our portfolio is crucial for clinical decision-making and treatment pathways.**How we work**: When you join Siemens Healthineers, you become one in a global team of scientists, clinicians, developers, researchers, professionals, and skilled specialists, who believe in each individual’s potential to contribute with diverse ideas. We are from different backgrounds, cultures, religions, political and/or sexual orientations, and work together, to fight the world’s most threatening diseases and enable access to care, united by one purpose: to pioneer breakthroughs in healthcare. For everyone. Everywhere. Sustainably.To find out more about Healthineers’ specific businesses, please visit our company page .As an equal opportunity employer, we welcome applications from individuals with disabilities.**Data Privacy**: We care about your and take compliance with GDPR as well as other data protection legislation seriously. For this reason, we ask you not to send us your CV or resume by email. We ask instead that you create a profile where you can upload your CV. Setting up a profile also lets us know you are interested in career opportunities with us and makes it easy for us to send you an alert when relevant positions become open. Register to get started.**Beware of Job Scams:** Please beware of potentially fraudulent job postings or suspicious recruiting activity by persons that are currently posing as Siemens Healthineers recruiters/employees. These scammers may attempt to collect your confidential personal or financial information. If you are concerned that an offer of employment with Siemens Healthineers might be a scam or that the recruiter is not legitimate, please verify by searching for the posting on the Siemens Healthineers career site.**To all recruitment agencies**: Siemens Healthineers does not accept agency resumes. Please do not forward resumes to our jobs alias, employees, or any other company location. Siemens Healthineers is not responsible for any fees related to unsolicited resumes. As an equal opportunity employer, we welcome applications from individuals with disabilities.