![Pira Consulting | Professional Technology Staffing Agency](https://media.trabajo.org/img/noimg.jpg)
Product Security Engineer Contracttohire
3 weeks ago
This position is eligible for a Hybrid work schedule (3 or more days on site a week) and will be based out of our St. Paul, MN location. Tue - Thurs on site.
6 - 12 Month for contract to hire
Job Summary:
As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering team members to identify business, technology and product risks and vulnerabilities in the early stages and embed security requirements to address and validate them. A lot of this is done by conducting security assessments where the activities will include threat modeling, attack modeling, security DFMEA, vulnerability assessment, triaging, and reporting.
This Sr. Cyber Security Engineer will also collaborate with product architects, system engineers, developers, and testers to implement secure designs by employing secure communications, network/device access control, authentication, authorization, cryptography, audit, forensics, and anomaly and misuse detection to provide information security (integrity, confidentiality, availability, and non-repudiation).
Core Job Responsibilities (others may be added):
- Define and develop processes and methodologies for designing secure systems
- Engage with teams to conduct security risk assessments and conform to organizational remediation/mitigation timelines in different phases of the secure product development lifecycle
- Provide product security support to development teams, including reviewing and explaining security tools and processes, providing vulnerability explanations and remediation guidance
- Optimize product/system security by creating and reviewing architecture and detailed design solutions that reflect best practices
- Coordinate product security program metrics and reporting
- Support ongoing vulnerability and patch management through tracking, triaging and prioritizing across all products to minimize the potential security risk
- Help drive system and product requirements to meet the regulatory and compliance requirements (like GDPR, ISO, ISA/IEC, SOC2, FedRAMP)
- Assist with training and mentoring of security champions
- Partner with third-party vendors to deliver software security tools and services
- Provide expert consultation on application security requirements and best practices with vulnerability scanning and secure application design
- Partner closely on security operations tasks with cross-functional teammates in IT, DevOps, Engineering, Compliance, and Test
- Manage 3rd party partners and vendors supplying cybersecurity-related services
- Identify the design implications within a platform and system and work with teams to minimize vulnerabilities
- Influence program decisions to reduce the risk exposure of the company
- Participate in Zero-day remediation, Hotfixes, and Incident Response efforts
- Identify and review test coverage for the security aspects of the system
- Assist in responses to external audits, customer questionnaires, penetration tests and vulnerability assessments
- Self-motivated to stay engaged with the market on new security products, threats and vulnerabilities and to apply innovative approaches in technology, marketing and service operations to meet those needs.
Basic Qualifications
- Bachelor's or Master's degree in Computer Science, Electrical Engineering or similar engineering discipline with an emphasis on cyber security
- 8+ years of cumulative experience in software development and engineering expertise in Application, Network, Cloud, Mobile, IoT, ICS, Embedded systems, APIs
- 5+ years of expertise in Product Security, Security Architecture and Security Assessment: Threat Modeling, Secure Development, Risk Assessment, Threat Analysis, DFMEA, Penetration testing, SDLA tools
- Strong understanding of operational technology principles, concepts, and techniques
- Strong knowledge of current security threats, techniques, and landscape, as well as a self-motivated desire to research current in the cybersecurity landscape
- Strong knowledge of OpenSSL, TLS mutual authentication, PKI, digital signatures, and certificate management
- Ability to research, develop, and keep abreast of tools, techniques, and process improvements in support of security detection and analysis following current and emerging threats
- Implementation experience or knowledge of security controls
- Should have good knowledge of security containers, hands-on experience with DevSecOps principles, and a good handle on end-to-end DevSecOps processes
- Technical understanding of cloud-native architecture and engineering best practices (AWS, Azure, Google Cloud)
- Working experience with OWASP Top 10 for web applications
- Knowledge of penetration testing techniques, application security vulnerabilities, OWASP Top 10, SANS 25, CWE, etc
- Knowledge of Security Industry Standards and Frameworks: e.g., NIST, ISA/IEC, GDPR, SOC2
- Excellent verbal and written communication skills, with the ability to communicate to all levels of the organization.
Preferred Qualifications
- Familiar with DISA STIG assessment and implementation for Linux and/or Windows systems
- Desirable security certification(s): GICSP, GCLD, GSOC, GDSA, or any other relevant certifications.
-
Product Security Engineer Contracttohire
7 days ago
St Paul, United States Pira Consulting | Professional Technology Staffing Agency Full timeThis position is eligible for a Hybrid work schedule (3 or more days on site a week) and will be based out of our St. Paul, MN location. Tue - Thurs on site. 6 - 12 Month for contract to hire Job Summary: As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering...
-
Senior Product Security Engineer
7 days ago
St Paul, United States Trane Technologies Full timeAt Trane Technologies TM and through our businesses including Trane ® and Thermo King ® , we create innovative climate solutions for buildings, homes, and transportation that challenge what’s possible for a sustainable world. We're a team that dares to look at the world's challenges and see impactful possibilities. We believe in a better future when we...
-
Senior Product Security Engineer
4 weeks ago
St Paul, United States Trane Technologies Full timeAt Trane Technologies TM and through our businesses including Trane and Thermo King , we create innovative climate solutions for buildings, homes, and transportation that challenge what’s possible for a sustainable world. We're a team that dares to look at the world's challenges and see impactful possibilities. We believe in a better future when we uplift...
-
Cyber Security Engineer
1 week ago
St Paul, United States Gravity IT Resources Full timeNo sub vendors please - W2 only Job Title: Senior Cybersecurity EngineerDuration: 12 month contractHybrid St. Paul MN 3 days a weekManager's Notes:The manager has highlighted the importance of candidates having a balanced background, NOT overly focused on IT/GRC but aligned with the provided job description.Job Summary:We are seeking a Senior Cybersecurity...
-
Application security engineer
2 months ago
St Paul, United States Tata Consultancy Services Full timeTechnical/Functional Skills Threat Modelling SAST (Static Application Security Test) DAST (Dynamic Application Security Test) Microfocus Web Inspect Enterprise / Scan Central DAST Roles & Responsibilities As a security engineer, you will be responsible for managing Application security tools: SAST, DAST and SCA. You will participate in Threat Modelling...
-
Senior Product Security Engineer
3 weeks ago
Saint Paul, United States Trane Technologies Full timeJob DescriptionAt Trane TechnologiesTM and through our businesses including Trane® and Thermo King®, we create innovative climate solutions for buildings, homes, and transportation that challenge what’s possible for a sustainable world. We're a team that dares to look at the world's challenges and see impactful possibilities. We believe in a...
-
Network Security Engineer
2 weeks ago
St Louis, United States GuidePoint Security Full timeGuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation's top organizations, such as Fortune 500 companies and U.S. government agencies,...
-
Product Security Engineer
4 weeks ago
Saint Paul, United States Pira Consulting | Professional Technology Staffing Agency Full timeJob DescriptionJob DescriptionThis position is eligible for a Hybrid work schedule (3 or more days on site a week) and will be based out of our St. Paul, MN location. Tue - Thurs on site. 6 - 12 Month for contract to hireJob Summary:As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and...
-
Product Security Engineer
3 weeks ago
Saint Paul, United States Pira Consulting | Professional Technology Staffing Agency Full timeJob DescriptionJob DescriptionThis position is eligible for a Hybrid work schedule (3 or more days on site a week) and will be based out of our St. Paul, MN location. Tue - Thurs on site. 6 - 12 Month for contract to hireJob Summary:As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and...
-
Security Engineer
1 month ago
St Paul, United States Talent Software Services Full timeSample Tasks ssist with evaluation of architecture interfacing with other state/federal/local systems. ssist with assessing the security of any equipment needed. ssist with the evaluation of data integrity and data security. ssist with ensuring all background check compliance is met for all project team members. ssist with creating procedures to...
-
Information Security Engineer
21 hours ago
St Paul, United States BCforward Full timeInformation Security Engineer BCforward is currently seeking a highly motivated Information Security Engineer for a Eagan, MN - Remote opportunity. Position Title: [ Information Security Engineer ] Location: [ Eagan, MN ] - Remote Anticipated Start Date: [Apr 29th, 2024] Please note this is the target date and is subject to change. BCforward will send...
-
Reliability Engineer
4 weeks ago
St Albans, United States The Chemical Engineer Full timeThe world needs fresh and innovative solutions. We need YOU! Where the chemistry happens… Our team is searching for a Reliability Engineer to work at our Attapulgus, GA site for the BASF Catalyst division which is the world's leading supplier of environmental and process catalysts. The group offers exceptional expertise in the development of technologies...
-
IT Security Engineer IV
4 days ago
St Paul, United States Genesis10 Full timeGenesis10 is seeking a IT Security Engineer IV for a contract with our client in Eagan, MN. 100% Remote. Job Description: The main function of a Security engineer is to plan, coordinate, and implement security measures for information systems to regulate access to computer data files and prevent unauthorized modification, destruction or disclosure of...
-
Product Engineer
4 weeks ago
St Paul, United States Dover Corporation Full timeColder Products Company (CPC) is the leading provider of quick disconnect couplings, fittings and connectors for plastic tubing. At CPC, we believe that fluid handling should be safe and easy. We engineer our connection solutions to improve the overall functionality and design of equipment and processes for the life sciences, industrial, and chemical...
-
Sr. Systems Engineer
2 weeks ago
St Paul, United States Marriott Full timeJob Number 24062106 Job Category Information Technology Location Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States Schedule Full-Time Located Remotely? Y Relocation? N Position Type Management Job Summary The Sr. Systems Engineer ensures that stability, integrity, and efficient security operations that support core customer...
-
Director, Product
4 weeks ago
St Paul, United States Bremer Corporate Office Full timeBremer Corporate Office Director, Product & Software Engineering Saint Paul , Minnesota Apply Now Why Work at Bremer? Are we a bank? Absolutely. But when it comes to careers, you'll find that there's a lot more to our business than you might expect. We're passionate about helping customers throughout Minnesota, Wisconsin and North Dakota succeed and grow....
-
Director, Product
6 days ago
St Paul, United States Bremer Corporate Office Full timeBremer Corporate Office Director, Product & Software Engineering Saint Paul , Minnesota Apply Now Why Work at Bremer? Are we a bank? Absolutely. But when it comes to careers, you'll find that there's a lot more to our business than you might expect. We're passionate about helping customers throughout Minnesota, Wisconsin and North Dakota succeed and grow....
-
Product Safety Engineer
4 weeks ago
St Paul, United States TÜV SÜD America Full timeOVERALL RESPONSIBILITIES:Act as a Product Safety Engineer for TÜV SÜD America, inspect, test, and photograph products for conformity assessment using international and national regulations with deliverables to clients being Certificates, Test Reports, and/or Technical Reports as quoted. Providing engineering expertise and operational support for Product...
-
Product Safety Engineer
6 days ago
St Paul, United States TÜV SÜD America Full timeOVERALL RESPONSIBILITIES:Act as a Product Safety Engineer for TÜV SÜD America, inspect, test, and photograph products for conformity assessment using international and national regulations with deliverables to clients being Certificates, Test Reports, and/or Technical Reports as quoted. Providing engineering expertise and operational support for Product...
-
Director, Product
4 weeks ago
St Paul, United States Bremer Bank Full timeWhy Work at Bremer? Are we a bank? Absolutely. But when it comes to careers, you’ll find that there’s a lot more to our business than you might expect. We’re passionate about helping customers throughout Minnesota, Wisconsin and North Dakota succeed and grow. Our commitment to authentic and enduring relationships starts by taking time to listen and...