Cybersecurity Lead – Product Security, Network Hardware, OS

🕒 May 28

🤠 Texas – Remote

🤠 Texas – Remote

⏰ Full Time

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🦅 H1B Visa Sponsor

This company has sponsored H1B visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Celestica

WebsiteLinkedInAll Job Openings

10,000+ employees

Founded 1994

🤝 B2B

💰 $660.4M Post-IPO Debt on 2021-09

B2B • Manufacturing • Supply Chain

Celestica is a global B2B leader in design, manufacturing and supply chain solutions for the world's most innovative companies. We work with the world’s leading brands to imagine, design and build industry-leading products and solve complex technology challenges that move the world forward. We’re involved in every part of the product journey – from how products are designed and engineered, sourced and supplied, to how they are manufactured and serviced.

📋 Description

• Lead the integration of security gates into the product development lifecycle for network hardware and OS software. • Enforce the standardized SDLC policy and ensure threat modeling (using frameworks like STRIDE or PASTA) is conducted during the design phase of every new product release. • Direct the security hardening of the network operating system. • Define and enforce baseline configurations to ensure the OS is resistant to tampering, implementing controls such as secure boot, kernel hardening, and restricted shell access. • Orchestrate the 'Standardizing Dynamic Testing and Vulnerability Management' initiative for product software. • Oversee the implementation of Static Application Security Testing (SAST) using tools like Snyk in the CI/CD pipeline and establish a Dynamic Application Security Testing (DAST) framework to identify runtime vulnerabilities. • Architect product features that support Zero Trust environments. • Manage the product vulnerability lifecycle. Establish Service Level Agreements (SLAs) for remediating findings identified during penetration testing and DAST scans, ensuring no critical vulnerabilities ship to production. • Ensure all product cryptographic implementations align with the 'IT Encryption & Cryptography Policy', mandating AES-256 standards.

🎯 Requirements

• 8–10 years of experience in product security, specifically focusing on network hardware (switches, routers, gateways) or embedded systems. • Strong background in C/C++, Go, or Python, with experience developing or securing Network Operating Systems (e.g., SONiC, Linux-based embedded OS). • Deep expertise in network protocols (L2/L3, TCP/IP, VLANs, VXLAN) and network security technologies (Firewalls, ACLs, 802.1X). • Proven experience implementing SAST/DAST pipelines (e.g., Snyk, Coverity, Burp Suite) and managing vulnerability disclosure programs. • Bachelor's degree in IT, Networking, or a related field (equivalent experience accepted). • Checkpoint: CCSE (highly preferred). General: CompTIA Security+ or Cisco CCNP Security.

🏖️ Benefits

• Extended periods of sitting • Sustained visual concentration on a computer monitor or on numbers and other detailed data. • Repetitive manual movements (e.g., data entry, using a computer mouse, using a calculator, etc.) are frequently required.