Responsible for the execution and definition of product security across all product lines. Partner with cross-functional teams to properly evaluate threats, contribute to threat models, and perform vulnerability assessments across the entire product life cycle – from early design phase through inception and iteration. Safeguards both the business as well as our customer data.

RESPONSIBILITIES

• Proactively identify security vulnerabilities that impact our products via multiple channels
• Proactively monitor security legislation for the markets we serve and provide internal guidance and impact to our products and roadmap.
• Perform competitive analysis around security features and trends to measure our own footprint as directed.
• Generate marketing content to promote security features, initiatives, and news
• Own, define, maintain, and execute security policies and processes.
• Pull internal teams together to triage and address security vulnerabilities.
• Aid in the execution of Threat Modeling and other secure development practices.
• Liaise with customers regarding security related matters, gathering feedback and direction and supporting and advocating Ezurio’s security offering and approach.

REQUIREMENTS

• Strong technical skills and understanding of security techniques and processes like PSIRT, software vulnerability monitoring, secure coding practices, threat modeling, vulnerability assessment, chain of trust, secure boot and hardware security modules (HSM) preferred.

• Ability to effectively perform security design reviews, code reviews, testing to identify vulnerabilities in products.

• Knowledge of wireless technologies, security standards, cryptographic algorithms such as Wi-Fi, Bluetooth, FIPS, and security protocols (e.g. SSL, TLS, WPA2/3) would be beneficial.

• Experience in common security tools and technologies like static analysis, dynamic analysis, etc.

• Collaboration with product managers, software engineers, and other teams to help address issues early in the product lifecycle.

• Well-versed with common vulnerabilities with cross-site scripting, broken authentication, etc. and mitigation techniques.

• Ability to prioritize security tasks and defects based on risk assessment.

• Provide security support and leadership to the product engineering team.

• Strong communication skills with the ability to understand and explain complex technical issues.

EDUCATION/EXPERIENCE

• BS in Computer Engineering or equivalent.
• 4-7 years of experience in related experience.