Sr. Product Security Analyst
Job Summary:
As a Product Security Analyst, you will be responsible for program governance and external security communications of our RF and Cellular based IoT systems. Responsibilities include policy creation, product inventory tracking, maintaining product security KPIs, and sourcing security training for engineering and quality assurance teams. This role also involves developing a coordinated vulnerability disclosure program, creating product security documentation, and responding to security questions in customer RFPs. Through this role, you will work collaborate with and support the product security team, various engineering groups, quality assurance teams, sales, and marketing.
Primary Responsibilities:
- Maintain product security policies
- Develop a product inventory tracking system that can be referenced upon vulnerability discovery
- Develop and maintain product security Key Performance Indicators (KPIs)
- Sourcing or developing product security training for software, firmware, and hardware engineering groups, as well as quality assurance testers
- Create and maintain a coordinated vulnerability disclosure program
- Create standardized marketing materials centered around product security of our IoT products for customer distribution and the corporate website
- Assist sales team in answering security questions for RFPs
- Other duties as assigned
Qualifications:
- BS Degree in Cybersecurity, Computer Science, Computer/Electrical/Electronic Engineering or equivalent
- Minimum of 5 years' experience in security or product engineering
- Strong communication and collaboration skills
- Experience with Secure Development Lifecycle model (SDLC)
- Knowledgeable in common security protocols and methodologies - TLS, symmetric and asymmetric encryption, digital signing, credential storage
- Familiarity with common software vulnerabilities and development best practices (OWASP Top 10, SANS SWAT)
- Familiarity with embedded system reverse engineering and attack methodologies
- Experience with forming SQL queries - MS SQL Server, MySQL, or PostgreSQL
- MS Office proficiency - Word, PowerPoint, and Excel
- Ability to visualize data through a dashboarding solution such as Splunk, Grafana, Tableau, etc.
We are an equal opportunity employer. Employment selection and related decisions are made without regard to sexual orientation, race, color, age, disability, religion, national origin, citizenship status and creed.