Apply on Employer Site

Siemens Digital Industries Software · 1 day ago

Product & Solution Security Expert

Charlotte, NC

Full-time

Hybrid

Mid Level

3+ years exp

Siemens Digital Industries Software is a leader in industrial software, and they are seeking a Product & Solution Security Expert to ensure that products and services are designed and delivered securely throughout their lifecycle. The role involves providing technical expertise and guidance to reduce cybersecurity risks while collaborating with various teams to implement security best practices.

Computer Software

Culture & Values

No H1B

U.S. Citizen Only

Responsibilities

Perform threat and risk analyses for products, solutions, and services

Translate security requirements into technical designs and architectural controls

Advise on secure design decisions, using PSS Guidelines and best practices

Guide development teams in secure coding, configuration, and deployment

Validate implementation of security controls and ensure alignment with PSS standards

Support or conduct security testing activities, including vulnerability assessments and penetration tests

Drive remediation and track vulnerabilities through the lifecycle

Oversee integration of security requirements in customer and internal projects

Ensure security controls are implemented throughout delivery and commissioning phases

Provide expertise on secure production processes and secure service operations

Ensure secure handling of software, firmware, tools, and update mechanisms

Support incident analysis and coordinated vulnerability disclosure processes

Contribute to corrective action planning and long‑term security improvements

Participate in internal PSSE communities, peer-learning forums, and PSS webcasts (PaSS-Time, TAPAS)

Mentor junior PSSEs and contribute to organizational security expertise

Qualification

CybersecuritySecure design principlesIncident managementVulnerability assessmentsSecure codingAnalytical skillsCommunication skillsCollaboration skillsContinuous learning

Required

Minimum 3 years professional experience in cybersecurity or a closely related technical field

Completion of PSS Basic Training, PSS Foundational Training, or demonstrated equivalent knowledge

Deep technical understanding in at least one domain (e.g., software engineering, IT/OT security, networking, system design)

Ability to communicate complex security topics clearly and teach others

To be fully qualified, a PSSE must complete within 2 years of nomination: PSSE Tutorial (soft skills, TRA, incident & vulnerability mgmt., secure architecture & design)

SANS SEC401 or Limes ICS.211 or equivalent recognized knowledge

Strong analytical and problem-solving skills

Deep knowledge of secure design principles and cybersecurity fundamentals

Ability to collaborate across engineering, project, and business teams

Effective communication and documentation capabilities

Continuous learning mindset and willingness to stay current with emerging threats and technologies