Senior Product Security Engineer (IoT)

3 954€

Формат работы

hybrid

Тип работы

fulltime

Грейд

senior

Английский

Страна

Austria

Вакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:

TL;DR

Senior Product Security Engineer (IoT): Strengthening security and privacy across cloud-connected products, devices, and services with an accent on secure architecture, threat modelling, and IoT-specific security controls. Focus on designing secure provisioning, PKI, secure boot, and ensuring compliance with the EU Cyber Resilience Act and GDPR.

Location: Hybrid (Fernitz bei Graz, Austria)

Salary: from €3,954 gross per month

Company

hirify.global is a team of industrial experts specializing in Industry 4.0, Smart Factory, and IIoT solutions.

What you will do

Define and drive product security, privacy, and compliance strategies for cloud platforms, devices, and product lines.
Lead threat modelling, security architecture reviews, and security-by-design practices for cloud and IoT solutions.
Discover and prioritize vulnerabilities using code reviews, fuzzing, static analysis, and penetration testing.
Design security controls including secure provisioning, PKI, secure boot, firmware signing, and OTA integrity.
Collaborate with engineering teams to remediate vulnerabilities and implement durable fixes.
Establish security monitoring, audit logging, and periodic assessments across all services and products.

Requirements

7+ years of experience in product security, security architecture, or cloud security, ideally in IoT environments.
Hands-on experience with IoT platforms, distributed systems, and cloud-connected client-server architectures.
Expertise in defining secure boots, keys provisioning, signing production data, and firmware image signing.
Experience with secure SDLC, SAST/DAST/SCA, SBOMs, and vulnerability management.
Knowledge of privacy and compliance frameworks such as GDPR, ISO 27001, SOC 2, and the EU Cyber Resilience Act.
Bachelor’s degree in Computer Science, Cybersecurity, Network Engineering, or equivalent experience.

Nice to have

Relevant security certifications such as CSSLP, CCSP, CISSP, or AZ-500.

Culture & Benefits

Flexible, hybrid work schedule with home office options.
Competitive pay and shareholder equity.
Comprehensive health benefits, including a company doctor.
Financial support for public transport and a canteen with meal assistance.
Casual dress code and flexible working hours.
Multicultural environment with regular team events.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →