Cybersecurity Lead – Product Security, Network Hardware, OS

🕒 il y a 13 jours

🤠 Texas – Distant

🤠 Texas – Remote

⏰ Temps Plein

🟠 Senior

👮‍♂️ Cybersécurité / Ingénieur Sécurité

🦅 Parrain de Visa H1B

Cette entreprise a parrainé des visas H1B par le passé.

Postuler Maintenant

Trouver des Emplois à Distance Similaires

Recevoir des emails pour des emplois à distance

📊 Vérifiez votre score de CV pour ce poste

Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.

Télécharger le CV

Celestica

Site WebLinkedInTous les Emplois

10 000+ employés

Fondée en 1994

🤝 B2B

💰 €660 400 000 Post-IPO Debt en 2021-09

B2B • Manufacturing • Supply Chain

Celestica est un leader mondial en solutions de design, fabrication et gestion de la chaîne d'approvisionnement pour les entreprises les plus innovantes au monde. Nous collaborons avec les marques les plus renommées pour imaginer, concevoir et créer des produits de pointe et résoudre des défis technologiques complexes qui font progresser le monde. Nous intervenons dans chaque étape du cycle de vie du produit, de sa conception et ingénierie à son approvisionnement, sa fabrication et son service.

Description

• Lead the integration of security gates into the product development lifecycle for network hardware and OS software. • Enforce the standardized SDLC policy and ensure threat modeling (using frameworks like STRIDE or PASTA) is conducted during the design phase of every new product release. • Direct the security hardening of the network operating system. • Define and enforce baseline configurations to ensure the OS is resistant to tampering, implementing controls such as secure boot, kernel hardening, and restricted shell access. • Orchestrate the 'Standardizing Dynamic Testing and Vulnerability Management' initiative for product software. • Oversee the implementation of Static Application Security Testing (SAST) using tools like Snyk in the CI/CD pipeline and establish a Dynamic Application Security Testing (DAST) framework to identify runtime vulnerabilities. • Architect product features that support Zero Trust environments. • Manage the product vulnerability lifecycle. Establish Service Level Agreements (SLAs) for remediating findings identified during penetration testing and DAST scans, ensuring no critical vulnerabilities ship to production. • Ensure all product cryptographic implementations align with the 'IT Encryption & Cryptography Policy', mandating AES-256 standards.

🎯 Exigences

• 8–10 years of experience in product security, specifically focusing on network hardware (switches, routers, gateways) or embedded systems. • Strong background in C/C++, Go, or Python, with experience developing or securing Network Operating Systems (e.g., SONiC, Linux-based embedded OS). • Deep expertise in network protocols (L2/L3, TCP/IP, VLANs, VXLAN) and network security technologies (Firewalls, ACLs, 802.1X). • Proven experience implementing SAST/DAST pipelines (e.g., Snyk, Coverity, Burp Suite) and managing vulnerability disclosure programs. • Bachelor's degree in IT, Networking, or a related field (equivalent experience accepted). • Checkpoint: CCSE (highly preferred). General: CompTIA Security+ or Cisco CCNP Security.

🏖️ Avantages

• Extended periods of sitting • Sustained visual concentration on a computer monitor or on numbers and other detailed data. • Repetitive manual movements (e.g., data entry, using a computer mouse, using a calculator, etc.) are frequently required.