Job Description:
Must Have :
Strong understanding of embedded systems architecture and programming languages including knowledge of security considerations for embedded development Familiarity with embedded device operating systems and communication protocols Expertise in Application Security principles threat modeling secure coding and vulnerability assessment Experience with security assessment tools like static analysis dynamic analysis and penetration testing Familiarity with toolsets like Microsoft Threat Modeling OWASP Threat Dragon Black Duck Coverity Burp Suite OWASP ZAP Nessus Nmap Metasploit etc. Stay updated on cybersecurity threats and trends
Roles and Responsibilities
Leading and managing a team of Application Security engineers
Developing and implementing security strategies policies and procedures for medical embedded devices and applications
Conducting security assessments and vulnerability testing of embedded devices and applications
Collaborating with development teams to ensure secure coding practices and adherence to security standards
Performing threat modeling and risk assessments for applications
Providing guidance and expertise in remediating security vulnerabilities and implementing secure coding techniques
Conducting code reviews and security audits to identify potential vulnerabilities
Keeping uptodate with the latest security threats trends and industry best practices
Providing training and awareness programs to educate development teams on Application Security
Participating in incident response activities and providing guidance on security incidents
Collaborating with crossfunctional teams to ensure security is integrated throughout the software development lifecycle of embedded devices and applications
Evaluating and recommending security tools and technologies to enhance Application Security
Contributing to the development and improvement of security policies standards and guidelines
Actively participating in security forums conferences and communities to stay current with the evolving threat landscape
security,embedded,application,Application Security,devices