Product and Solution Security Expert (PSSE)
Siemens
Hello Visionary!
We know that the only way a business thrive is if our people are growing. That’s why we always put our people first. Our global, diverse team would be happy to support you and challenge you to grow in new ways. Who knows where our shared journey will take you?
We are looking for Product and Solution Security Expert (PSSE)
How do you craft the future Smart Buildings? We’re looking for the makers of tomorrow, the hardworking individuals ready to help Siemens transform entire industries, cities and even countries. Get to know us from the inside, develop your skills on the job.
You’ll make a difference by:
1. Integration with SDLC:
• Collaborate with software development teams to integrate security practices throughout the Software Development Life Cycle (SDLC). • Perform security code reviews and analyze vulnerabilities during different SDLC phases. • Ensure security requirements are included in the design, development, testing, and deployment stages of software projects.
2. Security Activities:
• Develop and implement security protocols, guidelines, and best practices for software development. • Conduct threat modelling and risk assessments to identify potential security issues early in the development process. • Provide guidance on secure coding practices and remediation of identified vulnerabilities.
3. Stakeholder Interaction:
• Work closely with key stakeholders, including product managers, project managers, and business analysts, to support and promote security activities within products. • Communicate security risks, issues, and mitigation strategies effectively to both technical and non-technical stakeholders. • Foster a security-aware culture within the development teams and across the organization.
4. Security Tools and Technologies:
• Implement and manage security tools such as static and dynamic analysis tools, intrusion detection systems, and vulnerability scanners. • Stay updated with the latest security tools, trends, and best practices to enhance the organization's security posture.
5. Incident Response:
• Assist in the development and implementation of incident response plans and procedures. • Participate in security incident investigations and provide expertise in resolving security breaches.
6. Training and Awareness:
• Conduct security training and awareness programs for development teams. • Promote continuous improvement and knowledge sharing related to application security.
You’ll win us over by:
1. Technical Skills:
• In-depth knowledge of application security, secure coding practices, and common vulnerabilities (e.g., OWASP Top Ten). • Experience with security tools and technologies such as static analysis tools (SAST), dynamic analysis tools (DAST), and vulnerability scanners. • Proficiency in programming languages such as Java, C#, Python. • Understanding of DevSecOps practices and integration of security into CI/CD pipelines. • Promote continuous improvement and knowledge sharing related to application security.
2. Soft Skills:
• Strong communication and interpersonal skills. • Ability to explain complex security concepts to non-technical stakeholders. • Strong analytical and problem-solving skills. • Collaborative mindset and ability to work effectively with cross-functional teams.
3. Certification Preferred:
• Certified Secure Software Lifecycle Professional (CSSLP).
Experience:
• Proven experience working with software development teams and integrating security practices into the SDLC. • Experience interacting with key stakeholders and supporting security activities within software products.
You’ll win us over by:
• Having An engineering degree B.E/B.Tech/MCA/M.Tech/M.Sc with good academic record. • Minimum 5 years of experience in cybersecurity, with a focus on application security.
We’ll support you with:
• Hybrid working Opportunities. • Diverse and inclusive culture. • Great variety of learning & development opportunities.
Create a better #TomorrowWithUs!
This role, based in Pune, is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future.
At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We are dedicated to equality and welcome applications that reflect the diversity of the communities we serve. All employment decisions at Siemens are based on qualifications, merit, and business need.
Bring your curiosity and imagination, and help us shape tomorrow
Find out more about the Digital world of Siemens here: [1] www.siemens.com/careers/digitalminds
Find out more about Siemens careers at: [2] www.siemens.com/careers
We know that the only way a business thrive is if our people are growing. That’s why we always put our people first. Our global, diverse team would be happy to support you and challenge you to grow in new ways. Who knows where our shared journey will take you?
We are looking for Product and Solution Security Expert (PSSE)
How do you craft the future Smart Buildings? We’re looking for the makers of tomorrow, the hardworking individuals ready to help Siemens transform entire industries, cities and even countries. Get to know us from the inside, develop your skills on the job.
You’ll make a difference by:
1. Integration with SDLC:
• Collaborate with software development teams to integrate security practices throughout the Software Development Life Cycle (SDLC). • Perform security code reviews and analyze vulnerabilities during different SDLC phases. • Ensure security requirements are included in the design, development, testing, and deployment stages of software projects.
2. Security Activities:
• Develop and implement security protocols, guidelines, and best practices for software development. • Conduct threat modelling and risk assessments to identify potential security issues early in the development process. • Provide guidance on secure coding practices and remediation of identified vulnerabilities.
3. Stakeholder Interaction:
• Work closely with key stakeholders, including product managers, project managers, and business analysts, to support and promote security activities within products. • Communicate security risks, issues, and mitigation strategies effectively to both technical and non-technical stakeholders. • Foster a security-aware culture within the development teams and across the organization.
4. Security Tools and Technologies:
• Implement and manage security tools such as static and dynamic analysis tools, intrusion detection systems, and vulnerability scanners. • Stay updated with the latest security tools, trends, and best practices to enhance the organization's security posture.
5. Incident Response:
• Assist in the development and implementation of incident response plans and procedures. • Participate in security incident investigations and provide expertise in resolving security breaches.
6. Training and Awareness:
• Conduct security training and awareness programs for development teams. • Promote continuous improvement and knowledge sharing related to application security.
You’ll win us over by:
1. Technical Skills:
• In-depth knowledge of application security, secure coding practices, and common vulnerabilities (e.g., OWASP Top Ten). • Experience with security tools and technologies such as static analysis tools (SAST), dynamic analysis tools (DAST), and vulnerability scanners. • Proficiency in programming languages such as Java, C#, Python. • Understanding of DevSecOps practices and integration of security into CI/CD pipelines. • Promote continuous improvement and knowledge sharing related to application security.
2. Soft Skills:
• Strong communication and interpersonal skills. • Ability to explain complex security concepts to non-technical stakeholders. • Strong analytical and problem-solving skills. • Collaborative mindset and ability to work effectively with cross-functional teams.
3. Certification Preferred:
• Certified Secure Software Lifecycle Professional (CSSLP).
Experience:
• Proven experience working with software development teams and integrating security practices into the SDLC. • Experience interacting with key stakeholders and supporting security activities within software products.
You’ll win us over by:
• Having An engineering degree B.E/B.Tech/MCA/M.Tech/M.Sc with good academic record. • Minimum 5 years of experience in cybersecurity, with a focus on application security.
We’ll support you with:
• Hybrid working Opportunities. • Diverse and inclusive culture. • Great variety of learning & development opportunities.
Create a better #TomorrowWithUs!
This role, based in Pune, is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future.
At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We are dedicated to equality and welcome applications that reflect the diversity of the communities we serve. All employment decisions at Siemens are based on qualifications, merit, and business need.
Bring your curiosity and imagination, and help us shape tomorrow
Find out more about the Digital world of Siemens here: [1] www.siemens.com/careers/digitalminds
Find out more about Siemens careers at: [2] www.siemens.com/careers
Confirm your E-mail: Send Email
All Jobs from Siemens