Senior Engineer, Product Cybersecurity Systems

Valencia, CA - Hybrid / Remote

Senior Engineer, Product Cyber Security Systems

The Senior Product Cyber Security Systems Engineer role focuses on supporting the cyber security efforts for products and end-consumer services brought to the market by Advanced Bionics. In collaboration with Sonova's Product Cyber Security Center of Expertise, this position helps maintain robust product security practices, ensuring that products are protected against cyber security threats and compliant with regulatory requirements.

Responsibilities:

• Support Secure Product Development: Collaborate with product development, quality, and maintenance teams to integrate cyber security into the secure product development lifecycle, including secure design, development, maintenance, and DevSecOps practices.
• Cyber Security Strategy & Governance: Assist in developing and implementing Sonova's cross-divisional product cyber security strategy, roadmap, policies, standards, controls, and processes, ensuring adoption within Advanced Bionics.
• Threat & Regulatory Monitoring: Monitor evolving cyber threats, industry trends, and regulatory requirements, conducting assessments against relevant standards and frameworks to maintain an effective security posture.
• Security Requirements & Risk Management: Identify security requirements for products and business processes, monitor product cyber risks, and support initiatives to ensure product confidentiality, integrity, and availability.
• Security Verification & Vulnerability Management: Conduct and support security verification activities including design and code reviews, vulnerability scanning, penetration testing, and ongoing vulnerability management for products and services.
• Security Metrics, Documentation & Incident Response: Maintain required security documentation and quality deliverables, measure effectiveness of security controls through KPIs, and support cyber security incident response and investigations.
• Cross-Functional Collaboration & Continuous Improvement: Work with internal teams, external partners, and customers to promote cyber security awareness, support communication on product security matters, contribute to R&D activities in an agile environment, and drive continuous improvement initiatives.

Travelling Requirements: If you work remotely, travel to the Valencia CA site may be required as needed. Travel to other Sonova group-companies may be needed up to twice per year.

More about you:

• Education & Certifications: Bachelor's degree (or higher) in engineering or a related field, with further specialization in cybersecurity; professional security certifications preferred.
• Relevant Experience: At least 5 years of experience in software engineering, system design/architecture, SDLC, and project management, including 3+ years in cybersecurity-related roles.
• Cybersecurity & Regulatory Knowledge: Experience with threat modeling, security assessments, vulnerability management, secure SDLC practices, and familiarity with cybersecurity frameworks, standards, and regulations (e.g., GDPR, MDR, FDA, HIPAA).
• Technical Security Expertise: Knowledge of application security, cryptography, authentication/authorization protocols (e.g., OAuth2, WebAuthn), OWASP Top 10, SANS CWE-25, CI/CD pipelines, and DevSecOps practices.
• Programming & Systems Experience: Practical experience with programming languages such as C, C++, C#, Java, Swift, Kotlin, TypeScript, Rust, scripting languages such as Python, PowerShell, Bash, and frameworks/platforms including .NET, Angular, and Azure.
• Networking & Platform Security: Understanding of communication and security protocols such as Bluetooth (Classic/LE), WLAN, TLS, wireless vulnerabilities (RF, Bluetooth, Wi-Fi), and experience with penetration testing, fuzz testing, and embedded or device software environments.
• Professional & Interpersonal Competencies: Strong analytical and problem-solving abilities, excellent written communication skills, ability to explain complex security topics to non-technical audiences, work collaboratively across teams, manage competing priorities, and perform effectively under pressure.

A minimum of 200Mb/sec download and 10Mb/sec upload speed internet connectivity is required to support any remote/hybrid employee functionality at Sonova

Don't meet all the criteria? If you're willing to go allin and learn we'd love to hear from you!

We are looking forward to receiving your application via our online job application platform. For this position only direct applications will be considered. Sonova does not recruit via app, telegram, carrier pigeon or any other format that does not include speaking with an actual human. If you are offered a job without speaking with someone please contact Sonova Human Resources

What we offer:

• Medical, dental and vision coverage*
• Health Savings, Health Reimbursement, Flexible Spending/Dependent Care Accounts
• TeleHealth options
• 401k plan with company match*
• Company paid life/ad&d insurance
  
  
  
  • Additional supplemental life/ad&d coverage available
  
  
  
  
• Company paid Short/Long-Term Disability coverage (STD/LTD)
  
  
  
  • STD LTD Buy-ups available
  
  
  
  
• Accident/Hospital Indemnity coverage
• Legal/ID Theft Assistance
• PTO (or sick and vacation time), floating Diversity Day, & paid holidays*
• Paid parental bonding leave
• Employee Assistance Program (24/7 mental health support hotline, 5 company paid counseling sessions and more)
• Robust Internal Career Growth opportunities
• Tuition reimbursement
• Hearing aid discount for employees and family
• Internal social recognition platform

*Plan rules/offerings dependent upon group Company/location.

This role's pay range is between $104,880/yr - $157,320/yr. (This is dependent on location and experience). This role is also bonus eligible.

How we work:

At Sonova, we prioritize the well-being of our employees and foster an inclusive environment that promotes engagement and collaboration. Our team-customized hybrid work model empowers teams to balance individual needs with business goals, offering flexibility and individualized time management. We recognize the importance of life outside of work and strive to create a supportive and motivating workplace where innovation thrives.