Schneider Electric USA, Inc. seeks a Cyber Security Systems Lead in Cedar Rapids, IA.
Job Description: Scale cybersecurity and product security requirements throughout our team’s product portfolio. Independently investigate firmware, software, and hardware designs to identify and address potential cybersecurity vulnerabilities throughout the system development lifecycle. Perform analysis at all levels of the total system product including concept, design, manufacturing, implementation, test, installation, operation, maintenance, and disposal. Create and translate technical requirements into product requirements, generate design outputs to meet product requirements. Assist in development of security processes and automated tooling that prevent classes of security issues. Conduct security assessments using penetration testing tools such as Burp Suite, Nmap, Wireshark, and Nessus to identify vulnerabilities in firmware, software, hardware, and network components. Solve complex sanitization and asset integration issues, working with system and software leads to meet system requirements. Identify project risks and opportunities and be able to contribute to the mitigations and commercial implications. Prepare and approve system documentation, including functional specifications, test documents and system support manuals. Ensure the Project Manager/Engineering Team Leader are kept informed of progress and issues for all engineering aspects of the project delivery. Provide support to the CE team to assist with the timely resolution of customer issues. Remote eligible up to 2 days/wk.
Requirements: Position requires a Bachelor’s or Master’s degree, or foreign equivalent, in Electrical Engineering, Electronic Engineering, Computer Science, or related field and progressive, post-bachelor’s experience (5 years with Bachelor’s degree or 3 years with Master’s degree) in Firmware Design Engineering for cyber security, energy management, renewable energy, residential and smart homes, or solar power sector, or related occupation, which must include at least some experience in the following skills: Developing advanced security features, including Secure Boot, PKI integration, HTTPS/FTPS, device authenticity, firmware signing, secure storage, cryptography, and Privacy by Design; Designing embedded communication protocols (CAN, I2C, SPI, or UART), industrial protocols (Modbus, BACnet, or TCP), and wireless protocols (Zigbee, Bluetooth, or Wi-Fi); Assessing vulnerability assessment and performing penetration testing using Burp Suite, Nmap, Wireshark, Nessus, SQLmap, and Defensics; Implementing security throughout the SDLC, including, threat modeling, and risk assessment, and using cybersecurity standards and compliance frameworks (IEC 62443, NIST, ISO 27001, GDPR, or CRA); Using security testing tools, including: Coverity, Klocwork, or BDBA; Applying IEC 62443 cyber automation and process control standards to assess vulnerabilities and define customer needs; Evaluating, integrating, and managing Free and Open Source Software (FOSS) components, vulnerability management, and alignment with organizational cybersecurity policies; Designing and analyzing system behavior and structure using MBSE tools and methodologies (Cameo, or MATLAB); and Development using Agile design process (Scrum) and programming languages (C, C++, Python, or embedded C) for the development, design, implementation, and validation of software or control of embedded systems.
EOE.
To Apply: Visit http://careers.se.com and search Req#116266
Looking to make an IMPACT with your career?
When you are thinking about joining a new team, culture matters. At Schneider Electric, our values and behaviors are the foundation for creating a great culture to support business success. We believe that our IMPACT values – Inclusion, Mastery, Purpose, Action, Curiosity, Teamwork – starts with us.
IMPACT is also your invitation to join Schneider Electric where you can contribute to turning sustainability ambition into actions, no matter what role you play. It is a call to connect your career with the ambition of achieving a more resilient, efficient, and sustainable world.
We are looking for IMPACT Makers; exceptional people who turn sustainability ambitions into actions at the intersection of automation, electrification, and digitization. We celebrate IMPACT Makers and believe everyone has the potential to be one.
Become an IMPACT Maker with Schneider Electric – apply today!
€40 billion global revenue
+9% organic growth
150 000+ employees in 100+ countries
You must submit an online application to be considered for any position with us. This position will be posted until filled.
Schneider Electric aspires to be the most inclusive and caring company in the world, by providing equitable opportunities to everyone, everywhere, and ensuring all employees feel uniquely valued and safe to contribute their best. We mirror the diversity of the communities in which we operate, and ‘inclusion’ is one of our core values. We believe our differences make us stronger as a company and as individuals and we are committed to championing inclusivity in everything we do.
At Schneider Electric, we uphold the highest standards of ethics and compliance, and we believe that trust is a foundational value. Our Trust Charter is our Code of Conduct and demonstrates our commitment to ethics, safety, sustainability, quality and cybersecurity, underpinning every aspect of our business and our willingness to behave and respond respectfully and in good faith to all our stakeholders. You can find out more about our Trust Charter here
Schneider Electric is an Equal Opportunity Employer. It is our policy to provide equal employment and advancement opportunities in the areas of recruiting, hiring, training, transferring, and promoting all qualified individuals regardless of race, religion, color, gender, disability, national origin, ancestry, age, military status, sexual orientation, marital status, or any other legally protected characteristic or conduct.
Requirements: Position requires a Bachelor’s or Master’s degree, or foreign equivalent, in Electrical Engineering, Electronic Engineering, Computer Science, or related field and progressive, post-bachelor’s experience (5 years with Bachelor’s degree or 3 years with Master’s degree) in Firmware Design Engineering for cyber security, energy management, renewable energy, residential and smart homes, or solar power sector, or related occupation, which must include at least some experience in the following skills: Developing advanced security features, including Secure Boot, PKI integration, HTTPS/FTPS, device authenticity, firmware signing, secure storage, cryptography, and Privacy by Design; Designing embedded communication protocols (CAN, I2C, SPI, or UART), industrial protocols (Modbus, BACnet, or TCP), and wireless protocols (Zigbee, Bluetooth, or Wi-Fi); Assessing vulnerability assessment and performing penetration testing using Burp Suite, Nmap, Wireshark, Nessus, SQLmap, and Defensics; Implementing security throughout the SDLC, including, threat modeling, and risk assessment, and using cybersecurity standards and compliance frameworks (IEC 62443, NIST, ISO 27001, GDPR, or CRA); Using security testing tools, including: Coverity, Klocwork, or BDBA; Applying IEC 62443 cyber automation and process control standards to assess vulnerabilities and define customer needs; Evaluating, integrating, and managing Free and Open Source Software (FOSS) components, vulnerability management, and alignment with organizational cybersecurity policies; Designing and analyzing system behavior and structure using MBSE tools and methodologies (Cameo, or MATLAB); and Development using Agile design process (Scrum) and programming languages (C, C++, Python, or embedded C) for the development, design, implementation, and validation of software or control of embedded systems.
EOE.
To Apply: Visit http://careers.se.com and search Req#116266
Schneider Electric USA, Inc. seeks a Cyber Security Systems Lead in Cedar Rapids, IA.
Job Description: Scale cybersecurity and product security requirements throughout our team’s product portfolio. Independently investigate firmware, software, and hardware designs to identify and address potential cybersecurity vulnerabilities throughout the system development lifecycle. Perform analysis at all levels of the total system product including concept, design, manufacturing, implementation, test, installation, operation, maintenance, and disposal. Create and translate technical requirements into product requirements, generate design outputs to meet product requirements. Assist in development of security processes and automated tooling that prevent classes of security issues. Conduct security assessments using penetration testing tools such as Burp Suite, Nmap, Wireshark, and Nessus to identify vulnerabilities in firmware, software, hardware, and network components. Solve complex sanitization and asset integration issues, working with system and software leads to meet system requirements. Identify project risks and opportunities and be able to contribute to the mitigations and commercial implications. Prepare and approve system documentation, including functional specifications, test documents and system support manuals. Ensure the Project Manager/Engineering Team Leader are kept informed of progress and issues for all engineering aspects of the project delivery. Provide support to the CE team to assist with the timely resolution of customer issues. Remote eligible up to 2 days/wk.