Staff Product Security Engineer

Staff Product Security Engineer

Summary

Staff Product Security Engineer responsible for defining and driving cybersecurity strategy across a product portfolio. This role combines hands-on technical leadership with team guidance to embed secure-by-design principles from concept through post-market.

Responsibilities

• Lead and support a Product Security team across multiple products within the business unit
• Reduce cybersecurity risk and enhance product resilience across the portfolio
• Promote a culture of accountability, innovation, and continuous improvement
• Embed secure-by-design practices including threat modelling and proactive vulnerability management
• Collaborate with R&D, Quality, Regulatory, IT, and engineering teams across the full lifecycle
• Translate enterprise cybersecurity strategy into executable product-level plans
• Track, measure, and report security posture and risk trends
• Guide engineering teams on interpreting security requirements and implementing controls
• Define and deploy software security controls including encryption, authentication, logging, hardening, and patching
• Conduct product security risk assessments and hazard analyses
• Provide remediation guidance for vulnerabilities during development and post-market
• Support product security documentation using SAP, DocuSign, and SharePoint
• Coordinate document reviews and approvals in line with quality requirements
• Facilitate technical design reviews and code inspections with actionable feedback
• Support incident response activities and vulnerability management planning
• Collaborate with penetration testing, systems, hardware, quality, and technical service teams
• Ensure compliance with BD development policies and software quality procedures

Requirements

• Bachelor’s degree in Computer Science, Computer Engineering, Electrical Engineering, or equivalent experience
• Minimum of 5 years’ experience in IT security architecture and secure software development
• Experience leading and managing technical teams
• Strong knowledge of encryption algorithms and PKI solutions
• Understanding of embedded system security challenges and mitigations
• Experience with static and dynamic code analysis tools
• Strong knowledge of networking, security architectures, and threat vectors
• Experience working within regulated environments and quality management systems
• Excellent written, verbal, and interpersonal communication skills
• Strong work ethic with consistent delivery against objectives
• Proficiency with Microsoft Office tools

Benefits



• Comprehensive healthcare coverage, including options for family members
• Competitive pension scheme with employer contribution
• Performance-related incentive bonus
• Opportunity to participate in a company share investment or savings programme
• Life assurance cover
• Generous annual leave entitlement plus public holidays

#LI-MS2