Product Security & Software Development Engineer
Free day to volunteer
About the position
As Product Security Champion, you are responsible for implementing, monitoring, and continuously improving security activities within the software and product development processes at our location. This location develops and supplies high‑end machines for the pharmaceutical industry, where cybersecurity, reliability, and compliance are of critical importance. You will play a key role in translating the IEC 62443‑4‑1 requirements into practical and applicable measures within our existing software processes. You will work closely with software engineering and related departments such as product development and quality assurance. You will be able to independently identify gaps, draw up improvement plans, and guide the organization toward demonstrable compliance. You will work as a member of the software team and be responsible in ensuring that our software product is current with market supply and suitably upgraded to meet the needs of the company, the customer and regulatory requirements.
Your responsibilities and tasks
- Implementation of IEC 62443-4-1 within existing software processes.
- Performing gap analyses and drawing up improvement plans.
- Integrating secure‑by‑design principles into the SDLC (Software Development Life Cycle).
- Drawing up and managing security documentation such as threat models and secure coding guidelines.
- Working within the software department to implement required security advancements.
- Managing the software department in the field of Information Security.
- Collaborating with the Information Security and QA departments.
- Identification of risks in current supply, both security and continued supply of product architecture.
- Development for evolution of product architecture.
- Software standards maintenance.
Your profile and qualifications
Must-haves:
- Education and experience in software development processes, engineering, and computer science.
- Knowledge of information security.
- Experience in PLC, HMI and SCADA coding environments.
- Siemens PLC and HMI experience in TIA.
- Detailed SCADA coding experience, preferably GE iFix.
- Ability to independently analyse complex issues.
- Experience with process documentation and improvement plans.Proactive, independent, and analytically strong.
- Practical and solution oriented.
- Able to switch between technical and organisational tasks.
Nice-to-haves:
- Experience with IEC 62443-4-1 or comparable standards.
- Knowledge of IEC/OT security.
- Knowledge of threat modelling, secure coding, or security tooling.
- Relevant certifications such as ISA/IEC 62443 or CSSLP.
- Rockwell PLC/HMI experience.
Work Authorization
This position is based in the United States and does not offer visa or work sponsorship. Applicants must be authorized to work in the U.S. without current or future sponsorship.
Equal Opportunity Employer
GEA is an equal opportunity employer. Applicants will therefore receive consideration for employment without regard to age, sex, race, color, religion, world view, national origin, genetics, disability, gender identity, marital status or sexual orientation. Applicants with disabilities are welcome and will be given special consideration if they are equally qualified.
#J-18808-Ljbffr…