Summary
Staff Product Security Engineer responsible for defining and driving cybersecurity strategy across a product portfolio. This role combines hands-on technical leadership with team guidance to embed secure-by-design principles from concept through post-market.
Responsibilities
* Lead and support a Product Security team across multiple products within the business unit
* Reduce cybersecurity risk and enhance product resilience across the portfolio
* Promote a culture of accountability, innovation, and continuous improvement
* Embed secure-by-design practices including threat modelling and proactive vulnerability management
* Collaborate with R&D, Quality, Regulatory, IT, and engineering teams across the full lifecycle
* Translate enterprise cybersecurity strategy into executable product-level plans
* Track, measure, and report security posture and risk trends
* Guide engineering teams on interpreting security requirements and implementing controls
* Define and deploy software security controls including encryption, authentication, logging, hardening, and patching
* Conduct product security risk assessments and hazard analyses
* Provide remediation guidance for vulnerabilities during development and post-market
* Support product security documentation using SAP, DocuSign, and SharePoint
* Coordinate document reviews and approvals in line with quality requirements
* Facilitate technical design reviews and code inspections with actionable feedback
* Support incident response activities and vulnerability management planning
* Collaborate with penetration testing, systems, hardware, quality, and technical service teams
* Ensure compliance with BD development policies and software quality procedures
Requirements
* Bachelor's degree in Computer Science, Computer Engineering, Electrical Engineering, or equivalent experience
* Minimum of 5 years' experience in IT security architecture and secure software development
* Experience leading and managing technical teams
* Strong knowledge of encryption algorithms and PKI solutions
* Understanding of embedded system security challenges and mitigations
* Experience with static and dynamic code analysis tools
* Strong knowledge of networking, security architectures, and threat vectors
* Experience working within regulated environments and quality management systems
* Excellent written, verbal, and interpersonal communication skills
* Strong work ethic with consistent delivery against objectives
* Proficiency with Microsoft Office tools
Benefits
* Comprehensive healthcare coverage, including options for family members
* Competitive pension scheme with employer contribution
* Performance-related incentive bonus
* Opportunity to participate in a company share investment or savings programme
* Life assurance cover
* Generous annual leave entitlement plus public holidays