Product Security Engineer

Описание вакансии

Now is an amazing time to join Nozomi Networks as we build the future of OT and IoT cybersecurity.

We defend some of the world’s largest organizations and critical infrastructure in more than 68 countries and we’re just getting started. Our AI-powered cybersecurity platform secures operational technology (OT) and Internet of Things (IoT) infrastructures for enterprises and government entities across energy, manufacturing, transportation, resources, and critical infrastructure.

As we expand our product portfolio and global presence, our Engineering department is hiring a Product Security Engineer to lead the product security efforts of Nozomi Networks. You will lead the projects to evolve and maintain a robust product security strategy. In your day by day work you will be able to involve other Nozomi Networks employees and external contractors as deemed necessary.

You could be the next "Nozomier"! If this sounds like you, read on.

In this role you will:

• Embody the Nozomi Networks Cultural Pillars and our mission to protect what matters most with transparency and trust
• Conduct penetration and vulnerability assessment review and validation
• Conduct risk assessment, penetration testing, code reviews, and static analysis or other security validation of specific projects
• Composition analysis review (SBOM)
• CVE reviews
• Security validation
• Reviews and development of specific security features
• Projects and research work as needed

To be successful in this opportunity, you will have:

• Proven experience in a combination of risk management, information security, and IT jobs
• Software development background, proven experience with SDLC
• Ability to find security problems in code and design
• Knowledge of common information security management frameworks, such as ISO/IEC 27001 and NIST
• Good knowledge of crypto algorithms
• A good understanding of network and web-related protocols (such as TCP/IP, UDP, IPSEC, HTTP, HTTPS, etc.)
• Good knowledge of a scripting language and Unix operating system
• High level of English proficiency, both spoken and written
• Ability to operate in settings with strong confidentiality and data privacy protocols
• Professional security management certification is a strong advantage
• Experience with at least one of the major cloud computing vendors
• Experience in Agile software development desirable

Who we are and what we stand for:

Nozomi Networks is the leader in OT and IoT Cybersecurity. We protect the world's critical infrastructure, industrial and government organizations from cyber threats by providing exceptional network visibility, threat detection and operational insight. We’re always innovating and we hire the best at what they do to ensure our customers always have access to fast product enhancements, exceptional engineering support and rapid deployment across continents. If you like a challenge, and value integrity and customer success, we invite you to help Nozomi Networks build the future of OT and IoT cybersecurity.

Diversity, Inclusion and Belonging are part of our core beliefs, at Nozomi Networks. Diversity of thought, background and culture broadens our knowledge of the world and helps us learn, grow, and gain new perspectives. What makes us all different is what makes us powerful.

Our Global Benefits

All of our benefits are customized to the country you are based in, naturally we want to get the best out of our Nozomiers, so we provide the best benefits packages, such as:

• Health & Wellness
• Financial
• Work-Life Balance
• Unparalleled Flexible Time-Off

Need to know information

Successful candidates will be subjected to background verification checks.

Be cautious of unsolicited messages, fake email addresses, requests for money and unclear job descriptions. Report suspicious activity to authorities. Our open job opportunities and descriptions are posted on Nozomi Networks' career page. If in any doubt please apply for opportunities on our careers website here.

If you would like to know more about our Privacy Policy, please click here. Any questions about how we process personal information, or if you would like help exercising your privacy rights please contact us using the email provided within the Privacy Policy.