What is the salary for this Product Security Engineer tools engineer position?

Salary information for this Product Security Engineer tools engineer position is available upon application.

What experience is required for this Product Security Engineer tools engineer role?

This Product Security Engineer tools engineer position requires mid_level of experience.

Where is this Product Security Engineer tools engineer job located?

This Product Security Engineer tools engineer position is located in Hybrid - Pune.

How do I apply for this Product Security Engineer tools engineer position at Smith Nephew?

You can apply for this Product Security Engineer tools engineer position by clicking the 'Apply Now' button on this page, which will direct you to the official application portal.

Smith Nephew•18d ago

Naukri

Product Security Engineer tools eng...

Hybrid - Pune

Mid Level

Auto Apply to 50+ AI Matched Product Security Engineer tools eng... Jobs

Use Auto Apply Agents to Bulk Apply jobs with ATS Optimised Resumes, find verified Insider Connections for jobs at Smith Nephew

Full Job Description

Role Overview:

The Smith + Nephew Product Cybersecurity Engineer is responsible for delivering product security scanning and threat models to cross-functional stakeholders within product security and product development teams. The primary goal is to ensure Smith + Nephew products and their data are secure and resilient against cybersecurity threats.

This role involves collaborating with diverse internal stakeholders to design, engineer, and ensure the implementation of security tools used throughout the entire product lifecycle. These tools include threat modeling, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA).

The engineer will be responsible for executing security scans (SAST, DAST, SCA) and supporting the creation of Software Bill of Materials (SBOMs), leveraging a strong understanding of the products and available tools.

Responsibilities:

(50%) Initiate and manage security scans for threat modeling, SAST, DAST, SCA, and SBOM tools.
(20%) Monitor scan completion, troubleshoot failures, and drive issues to resolution.
(20%) Distribute scan results and reports to relevant teams and stakeholders. Provide support to developers utilizing the tools. Ensure vulnerabilities are properly routed and triaged.
(10%) Maintain user guides for each tool and ensure users receive adequate training.

Location:

Pune, India (Hybrid)

Education:

Bachelor's degree in life science, computer science, information systems, or equivalent formal training or work experience.

Licenses/Certifications:

Current CISM, CISSP, CRISC, or equivalent certification is preferred.

Experience:

3+ years of hands-on cybersecurity experience.
Proficiency in running security tools and troubleshooting.
Strong understanding of mitigating security controls.
Experience in Vulnerability Management and Application Security.
Experience with Threat modeling and SBOM generation.
Familiarity with HIPAA, FDA, ISO 27001/2, NIST CSF, and OWASP.

Competences:

Experience creating threat models and generating SBOMs.
Excellent written and oral communication skills.
Excellent customer service and problem-resolution skills.
Ability to manage and prioritize multiple tasks effectively.
Ability to work independently and proactively without daily direction.
Experience working across multiple teams and business lines.

Company

Smith Nephew

Hybrid - Pune

Posted on Naukri