Application/Product Security Engineer
ABB
Application/Product Security Engineer
At ABB, we are dedicated to addressing global challenges. Our core values: care, courage, curiosity, and collaboration - combined with a focus on diversity, inclusion, and equal opportunities - are key drivers in our aim to empower everyone to create sustainable solutions. Write the next chapter of your ABB story.
This position reports to
Head of IIoT P&A Common Service
Your role and responsibilities
We are an international pioneering technology leader that is writing the future of industrial digitalization. At the forefront is our Corporate Technology Center which provides industry leading software and deep domain expertise to help the world's most asset-intensive industries solve their biggest challenges. To strengthen our team in IIoT Platform and Applications stream, we are looking for a Application/Product Security Engineer, who is an effective team player with excellent communication skills. As an IIoT P&A stream we are developing unified approach for software which consists of set of services and apps with individual lifecycles hosted on top of ABB common platforms for on-prem execution and cloud. Seize this unique opportunity and see your work transformed into a hive of tangible products. As an Application/Product Security Engineer you will be working with cross-functional and agile teams which operates in an international environment. The work model for the role is: hybrid #LI-hybrid You will be mainly accountable for: • Security Assessments: Conduct regular security assessments, including threat modeling, At-tack Surface Analysis, Critical Analysis. • Security Architecture: Design and implement security architecture and controls for new and existing products. • Code Review: Review source code for security vulnerabilities and provide actionable feedback to development teams. • Secure Coding Practices: Educate and advocate for secure coding practices among development teams through workshops, training sessions, and documentation. • Tool Implementation: Evaluate and implement application security tools (e.g., static and dynamic analysis tools) to automate security testing processes. • Incident Response: Assist in incident response activities related to application security breaches, including root cause analysis and remediation strategies. • Collaboration: Work closely with cross-functional teams, including software developers, DevOps, and IT security, to ensure security considerations are integrated into the development process. • Monitoring and Reporting: Monitor application security metrics and provide regular reports to management on security posture and compliance. Work model: hybrid #LI-Hybrid
Qualifications for the role
More about us
We value people from different backgrounds. Apply today for your next career step within ABB and visit www.abb.com to learn about the impact of our solutions across the globe. #MyABBStory. ABB Data Privacy Statement: https://new.abb.com/privacy-notice/candidate
At ABB, we are dedicated to addressing global challenges. Our core values: care, courage, curiosity, and collaboration - combined with a focus on diversity, inclusion, and equal opportunities - are key drivers in our aim to empower everyone to create sustainable solutions. Write the next chapter of your ABB story.
This position reports to
Head of IIoT P&A Common Service
Your role and responsibilities
We are an international pioneering technology leader that is writing the future of industrial digitalization. At the forefront is our Corporate Technology Center which provides industry leading software and deep domain expertise to help the world's most asset-intensive industries solve their biggest challenges. To strengthen our team in IIoT Platform and Applications stream, we are looking for a Application/Product Security Engineer, who is an effective team player with excellent communication skills. As an IIoT P&A stream we are developing unified approach for software which consists of set of services and apps with individual lifecycles hosted on top of ABB common platforms for on-prem execution and cloud. Seize this unique opportunity and see your work transformed into a hive of tangible products. As an Application/Product Security Engineer you will be working with cross-functional and agile teams which operates in an international environment. The work model for the role is: hybrid #LI-hybrid You will be mainly accountable for: • Security Assessments: Conduct regular security assessments, including threat modeling, At-tack Surface Analysis, Critical Analysis. • Security Architecture: Design and implement security architecture and controls for new and existing products. • Code Review: Review source code for security vulnerabilities and provide actionable feedback to development teams. • Secure Coding Practices: Educate and advocate for secure coding practices among development teams through workshops, training sessions, and documentation. • Tool Implementation: Evaluate and implement application security tools (e.g., static and dynamic analysis tools) to automate security testing processes. • Incident Response: Assist in incident response activities related to application security breaches, including root cause analysis and remediation strategies. • Collaboration: Work closely with cross-functional teams, including software developers, DevOps, and IT security, to ensure security considerations are integrated into the development process. • Monitoring and Reporting: Monitor application security metrics and provide regular reports to management on security posture and compliance. Work model: hybrid #LI-Hybrid
Qualifications for the role
- University degree in Computer Science or similar field
- Understanding of programming languages such as Java, C#, Python, or JavaScript.
- Strong understanding of application security principles and secure coding practices.
- Strong understanding of application security principles like network security, encryption, access management and their best practices
- Experience with security tools and processes such as SAST, DAST, SCA, and vulnerability scanners (e.g., SonarQube, OWASP ZAP, Nessus, Invicti)
- Knowledge of security frameworks (e.g., OWASP Top Ten, NIST, ISO 27001), cloud platforms (e.g., AWS, Azure, Google Cloud) and their security features
- Hands on experience with containerization and orchestration tools such as Docker and Kubernetes
- Fluency in English
- Certifications: Relevant certifications such as Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), or Offensive Security Certified Professional (OSCP) are a plus.
More about us
We value people from different backgrounds. Apply today for your next career step within ABB and visit www.abb.com to learn about the impact of our solutions across the globe. #MyABBStory. ABB Data Privacy Statement: https://new.abb.com/privacy-notice/candidate
JOB SUMMARY
Application/Product Security EngineerABB
Parzeczew
21 days ago
N/A
Full-time