Sr Software Engineer - Product Security

Work Flexibility: Onsite

What you will do:
• Conduct Monthly/Quarterly scans, monitor software bill of materials, assess penetration test results

• Review scans, perform attacks, review code to find concerning vulnerabilities

• Determine exploitability, research mitigations and solutions, document results

• Provide feedback to R&D on potential solutions

• Collaborate with other members of the cyber security team and stake holders to remove the

    technical roadblock and ensuring the quality delivery.

• Monitor the latest threats in cybersecurity to remain up to date on the best protective strategies.

• Stay up to date on the latest cybersecurity technologies and trends related to the project and recommend appropriate solution to improve the company’s security posture.

• Learn other security tools and work with Security team to create a plan to integrate the new tool with them

Required Qualifications:
• Bachelor's degree in Cybersecurity, Computer Science or related discipline along 5+ years of professional work experience in product development space.

• 2+ years of experience in scanning, recommending, and implementing the solutions

   for vulnerability fixes to protect their systems

• Knowledge of security tools such as Tenable.io, Blackduck SCA, Burp Suite, Jira, PowerShell, Ruby, Python

• Knowledge of configuring and using Windows Server and Linux operating systems

• Knowledge of HTTP, HTTPS, web services / API, and Cloud testing techniques

• Knowledge of networking concepts, configuration, and implementation

• Experience with cyber-security assessment techniques and the concepts of exploitability,

   CVSS rescoring
Preferred Qualifications (Strongly desired):
• Experience in an FDA or other regulated industry highly preferred.