We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
#alert
Back to search results
Remote

Engineer Associate Staff Managing, Security

Shure Incorporated
paid time off
United States, Illinois, Niles
5800 West Touhy Avenue (Show on map)
Dec 21, 2024

Engineer Associate Staff Managing, Security
Job ID

2024-3974


Category
Software Engineering


Job Locations

US-IL-Niles

Workplace Arrangement
Hybrid



Overview

Shure is seeking a highly skilled and motivated Product Security Engineer to lead our team and oversee product security initiatives. In this role you will ensure our products are designed, developed, and maintained with the highest security standards. You will work closely with cross-functional teams to embed security into the product lifecycle, drive the security roadmap, and respond to emerging threats.

As part of this role, your responsibilities will include planning, coordinating, and conducting penetration tests and security assessments for applications, hardware products, systems, and enterprise networks. Occasionally, you may provide development support for new platform security features and proof of concept demonstrations. Your attention to detail and commitment to execution are essential for maintaining product integrity and security.

This position will be Hybrid from our Niles, IL (Chicagoland) Corporate Headquarters.



Responsibilities

    Daily Activities and Oversight: Oversee daily security-related activities of the product security team, ensuring timely completion of tasks, issue resolution, and continuous monitoring of security metrics.
  • Collaboration: Collaborate with product management, engineering, and development teams to integrate security into the product lifecycle, from design to deployment.
  • Threat Modeling and Risk Assessments: Conduct threat modeling, risk assessments, and vulnerability assessments for new and existing products.
  • Compliance and Certification: Support the process of monitoring, achieving, and maintaining various applicable cybersecurity standards and regulations.
  • Incident Response: Lead security incident response efforts related to product security issues, ensuring swift and effective resolution.
  • Training and Awareness: Provide security training and awareness for the product security team as well as engineering and product teams to foster a culture of security.
  • Continuous Improvement: Stay updated on the latest security threats, vulnerabilities, and technology trends, and proactively implement improvements.
  • Strategy and Roadmap: Provide strategic and long-term recommendations and help lead the continued improvement of the product security program and product security roadmap.
  • Vulnerability Assessments: Conduct vulnerability assessments of IoT products and cloud systems to identify potential security weaknesses.
  • Penetration Testing: Execute penetration tests to simulate real-world attacks and evaluate the robustness of IoT/embedded products and systems.
  • Security Development: Lead and contribute to proof of concept development work to implement new platform security features and/or demonstrate security concepts.
  • Ad Hoc Research: Perform ad hoc security research as time permits.
  • Other Duties: Perform other duties as assigned.


Qualifications

  • Bachelor's degree in Computer Science, Electrical/Computer Engineering, IT security, or a related field, and 8 years of relevant work experience as a product developer or security analyst, or 12 years of relevant work experience as a product security analyst or penetration tester.
  • Proven experience working in a product security capacity with embedded hardware products, software applications, and cloud/IoT-native products. Development experience is a plus.
  • Proven ability to drive and ensure timely completion of projects and tasks.
  • Demonstrated ability to work relentlessly to get work completed, with a focus on high-quality outcomes.
  • Staff management experience.
  • Proficient in various security frameworks, tools, and techniques. Familiarity with security standards and frameworks such as ISO, NIST, OWASP, etc.
  • Experience with commercial and open-source security testing tools and methodologies.
  • Comprehensive understanding of IoT/Cloud architectures, protocols, and standards.
  • Strong understanding of network security protocols, data encryption, and secure coding practices.
  • Strong understanding of security principles, including encryption, authentication, access control, and secure coding practices.
  • Experience with C/C++, Java/Node, and Python.
  • Exceptional problem-solving skills, analytical mind, and attention to detail.
  • Strong written and verbal communication skills, with the ability to work effectively with diverse teams.
  • Relevant professional certification, such as CompTIA PenTest+, Certified Ethical Hacker (CEH) Certification, GIAC Penetration Tester (GPEN), or equivalent, is a plus.
  • DevSecOps experience (especially with Jenkins build systems and JFrog tools) is a plus.
  • Experience with Amazon AWS is a plus.
  • Experience supporting FedRAMP and Common Criteria certification processes is a plus.

Applicants for this position must be currently authorized to work in the United States on a full-time basis. Shure will not sponsor applicants for this position for work visas.

WHO WE ARE
Shure's mission is to be the most trusted audio brand worldwide - and for nearly a century, our Core Values have aligned us to be just that. Founded in 1925, we are a leading global manufacturer of audio equipment known for quality, reliability, and durability. We engineer microphones, headphones, wireless audio systems, conferencing systems, and more. And quality doesn't stop at our products. Our talented teams strive for perfection and innovate every chance they get. We offer an Associate-first culture, flexible work arrangements, and opportunity for all.

Shure Incorporated is headquartered in Niles, Illinois, with remote and hybrid opportunities throughout the United States. We have more than 35 regional sales offices, engineering hubs, and manufacturing facilities throughout the Americas, EMEA, and Asia.

THE MIX MATTERS
Don't check off every box in the job requirements? No problem! We recognize that every professional journey is unique and are committed to providing an equitable candidate experience for all prospective Shure Associates. If you're excited about this role, believe you've got the skills to be successful, and share our passion for creating an inclusive, diverse, equitable, and accessible work environment, then apply!

WE GOT YOU - Our Benefits

At Shure, we prioritize the well-being of our associates. We offer competitive rewards packages that address physical, mental, financial, and overall well-being. Our benefits include retirement savings plans, generous paid time off programs, employee discounts, professional development opportunities, work-life balance initiatives, employee recognition programs, commuter benefits, employee assistance programs, and volunteering/community involvement opportunities. To learn more, visit our careers page at www.shure.com/careers.

#LI-HYBRID

Applied = 0

(web-86f5d9bb6b-jk6zr)