Celestica · 4 hours ago
Cybersecurity Lead - Product Security (Network Hardware & OS)
Richardson, TX
Full-time
Onsite
Senior Level, Lead/Staff
8+ years expCelestica is a leading company that partners with top brands to deliver solutions for complex challenges in various industries. They are seeking a Cybersecurity Lead - Product Security, responsible for embedding security into network hardware products and operating systems, ensuring compliance with Zero Trust principles and managing vulnerabilities throughout the product lifecycle.
ElectronicsManufacturingProduct DesignSupply Chain Management
No H1B
U.S. Citizen OnlyHiring Manager
Raluca Radac (Sotoc)
Responsibilities
Lead the integration of security gates into the product development lifecycle for network hardware and OS software
Enforce the standardized SDLC policy and ensure threat modeling (using frameworks like STRIDE or PASTA) is conducted during the design phase of every new product release
Direct the security hardening of the network operating system
Define and enforce baseline configurations to ensure the OS is resistant to tampering, implementing controls such as secure boot, kernel hardening, and restricted shell access
Orchestrate the 'Standardizing Dynamic Testing and Vulnerability Management' initiative for product software
Oversee the implementation of Static Application Security Testing (SAST) using tools like Snyk in the CI/CD pipeline and establish a Dynamic Application Security Testing (DAST) framework to identify runtime vulnerabilities
Architect product features that support Zero Trust environments
Ensure network products support granular micro-segmentation capabilities and robust identity integration, moving away from local authentication to centralized, MFA-ready administrative access
Manage the product vulnerability lifecycle
Establish Service Level Agreements (SLAs) for remediating findings identified during penetration testing and DAST scans, ensuring no critical vulnerabilities ship to production
Ensure all product cryptographic implementations align with the 'IT Encryption & Cryptography Policy', mandating AES-256 standards
Validate the security of implemented network protocols (BGP, OSPF, SSH, TLS) against industry best practices
Qualification
Required
8–10 years of experience in product security, specifically focusing on network hardware (switches, routers, gateways) or embedded systems
Strong background in C/C++, Go, or Python, with experience developing or securing Network Operating Systems (e.g., SONiC, Linux-based embedded OS)
Deep expertise in network protocols (L2/L3, TCP/IP, VLANs, VXLAN) and network security technologies (Firewalls, ACLs, 802.1X)
Proven experience implementing SAST/DAST pipelines (e.g., Snyk, Coverity, Burp Suite) and managing vulnerability disclosure programs
Mastery of threat modeling methodologies (STRIDE, PASTA) to identify design flaws early in the development cycle
Expert knowledge of OS hardening standards (CIS Benchmarks, NIST) and how to apply them to custom hardware platforms
Solid understanding of applied cryptography (PKI, TLS, AES, secure boot chains)
Ability to translate 'Zero Trust' concepts into concrete product features (e.g., API security, mutual TLS)
Capable of earning the respect of hardware engineers and kernel developers through deep technical competence
Rigorous in validating that 'Secure by Design' is not just a slogan, but a documented and tested reality
Bachelor's degree in IT, Networking, or a related field (equivalent experience accepted)
Preferred
Checkpoint: CCSE (highly preferred)
CompTIA Security+ or Cisco CCNP Security
Company
Celestica
Celestica is a manufacturing firm that provides design, hardware platform, and supply chain solutions to a multitude of industries.
10001+ employees
Funding
Current Stage
Public CompanyTotal Funding
$1.47B2024-06-20Post Ipo Debt· $657.67M
2023-06-05Post Ipo Secondary· $148.8M
2021-09-30Post Ipo Debt· $660.4M
Leadership Team
Robert Mionis
President and CEO
Recent News
legacy.thefly.com
2026-01-23
The Motley Fool
2026-01-23
2026-01-22
Company data provided by crunchbase