Product Security and Solution Security Engineer

Product Security & Solution Security Engineer (PSSE) at Siemens

Siemens is seeking a dedicated and talented Product Security & Solution Security Engineer (PSSE) to join their team. This role is crucial for embedding security processes throughout the product lifecycle, from design to deployment and sustainment, with a strong emphasis on secure software engineering practices.

About the Role

As the PSSE representative for Siemens RuggedCom products, you will be instrumental in defining and enforcing security requirements for software applications and management systems. You will guide and coach software developers, perform threat modeling and risk assessments, and provide expertise on secure architecture, including identity, authorization, and secure communication.

Key Responsibilities

• Define, maintain, and enforce security requirements for software applications.
• Guide, coach, and train software developers on secure coding practices.
• Perform threat modeling, threat and risk assessments, and security architecture reviews.
• Provide hands-on expertise on secure architecture, including identity, authorization, and secure communication.
• Establish and promote secure software development lifecycle (SSDLC) practices.
• Conduct or support secure testing activities (SAST, DAST, SCA, penetration testing).
• Analyze vulnerabilities and drive remediation plans with development teams.
• Collaborate with cross-functional teams to embed security into development workflows.
• Support incident investigation, response, and resolution.
• Ensure alignment with relevant security standards and best practices (e.g., OWASP Top 10).
• Communicate secure architectures, risks, and mitigations to stakeholders.

What You'll Need to Succeed

• Bachelor's or Master's degree in Computer Science, Information Technology, Cybersecurity, Engineering, or related discipline.
• 3+ years of experience in software development, application security, or product security.
• Strong expertise in Python/ C# / .NET development.
• Strong knowledge of OWASP and secure software development best practices.
• Proven ability to mentor and coach developers with practical guidance.
• Solid experience with secure architecture, secure communication, and secure API design.
• Hands-on experience with secure testing approaches and tools.
• Understanding of vulnerability management, threat analysis, and incident handling.
• Knowledge of application and database security is beneficial.
• Familiarity with standards/frameworks like IEC 62443, NIST, ISO 27001 is an advantage.
• Excellent communication skills.
• Experience working in cross-functional and international teams.

Why Siemens?

• Flexible work environment with flex hours, telecommuting, and digital workspaces.
• Opportunity to solve significant global problems with innovative projects.
• Engaging, challenging, and fast-evolving technological environment.
• Career advancement opportunities and mentorship programs.
• Competitive total rewards package, including profit sharing.
• Generous vacation entitlement.
• Contribute to social responsibility initiatives.
• Participate in company celebrations and social events.
• Opportunities to get paid for innovative ideas.
• Employee perks and discounts.
• A diversity and inclusivity focused workplace.

Key skills/competency

• Product Security
• Solution Security
• Security Engineer
• Software Development
• Application Security
• Threat Modeling
• Secure Coding
• Vulnerability Management
• OWASP
• Cybersecurity