Lead Cyber Security Engineer
Danaher
- Bangalore, Karnataka
- Permanent
- Full-time
- Understand a wide variety of project architectures
- Maintain software build and test configurations
- Monitor the software supply chain and recommend actions and priorities
- Integrate the latest patches and software updates into products
- Follow company documentation procedures for requirements, design, security, coding, and testing
- Execute quality assurance activities such as risk analysis, software deliverable technical reviews, code inspections and vulnerability assessment
- Bachelor’s degree in Computer Science, Software Engineering, Cybersecurity, or a related field
- 8+ years of experience in commercial software development and testing
- Experience with Windows and Linux operating systems from a software development and testing perspective and software supply chain concepts
- Ability to author, execute, and document formal testing, including plans, protocols, and traceability
- Demonstrated analytical skills, problem-solving skills, and ability to work collaboratively
- Good understanding of Windows/Linux Operating System patching, remediation techniques and tactics
- Good knowledge and understanding of the security concepts like CIA, CVSS, CWE, SAST, vulnerability assessment and code reviews
- Experience analyzing risk and prioritization of vulnerabilities, validating vulnerability reports, and driving remediation
- Software development experience in the life sciences or medical device domains
- Familiarity with C#, C++, or Java software development
- Familiarity with Jenkins or Azure Devops
- Working knowledge of FDA Quality System Regulations (QSR) 21 CFR 820, ISO 13485:2003, and other worldwide medical device regulations
- Experience in Agile/Scrum software development methodologies
- Analyze assessment results and threat feeds to properly react to security weaknesses or vulnerabilities
- Hands on experience with Secure Development Lifecycle and testing, threat modeling, secure communication, cryptographic algorithms, certificates, PKI, key management
- Good knowledge of windows security modules and their configurations.
- Knowledge of DAST, SCA and SBOM