Job
- Level
- Experienced
- Job Field
- IT, Embedded, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Salary
- from 60.000 € Gross/Year
- Location
- Vienna
- Working Model
- Hybrid, Onsite
Job Summary
In this role, you collaborate on integrating security requirements into pharmacy automation development and perform security analyses, including penetration testing and threat modeling.
Job Technologies
Your role in the team
- Collaborate with product development teams (software, hardware, and firmware) to integrate security requirements and best practices into the design, development, and testing phases of pharmacy automation products.
- Conduct security threat modeling, risk assessments, and vulnerability analysis for new and existing products, identifying potential weaknesses and recommending mitigation strategies.
- Perform security code reviews, penetration testing, and fuzzing to identify and address security vulnerabilities in software and firmware.
- Develop and implement secure coding guidelines, security testing methodologies, and security-related documentation for product development teams.
- Stay up-to-date with the latest security trends, threats, and technologies, particularly those relevant to medical devices, industrial control systems, and healthcare IT.
- Execute product security risk assessments, hazard analysis, and provide vulnerability remediation guidance to product development software engineers.
- Assist product development teams in complying with product security framework activities and creating security documentation, including Incident and Vulnerability Management Plans and Product Security White Papers.
- Work closely with regulatory affairs and quality assurance teams to ensure product security compliance with industry standards (e.g., IEC 62443, HIPAA, GDPR, FDA guidance).
- Participate in incident response activities related to product security, including investigation, analysis, and remediation of security incidents.
- Educate and mentor development teams on secure design principles and coding practices.
- Evaluate third-party components and libraries for security vulnerabilities and recommend appropriate usage or alternatives.
- Contribute to the continuous improvement of the product security program and processes.
This text has been machine translated. Show original
Our expectations of you
Education
- Bachelor's degree in Computer Science, Electrical Engineering, Cybersecurity, or a related technical field.
Qualifications
- Solid understanding of common security vulnerabilities (e.g., OWASP Top 10) and their mitigation techniques.
- Proficiency in at least one programming language (e.g., C++, C#, Python, Java).
- Familiarity with secure development lifecycle (SDL) processes and frameworks.
- Knowledge of cryptography principles and secure communication protocols.
- Excellent analytical, problem-solving, and communication skills.
- Ability to work effectively in a cross-functional team environment.
Experience
- Proven experience (3+ years) in product security engineering, with a strong focus on embedded systems, IoT, or industrial control systems.
- Experience with security testing tools and methodologies (e.g., static application security testing (SAST), dynamic application security testing (DAST), penetration testing).
This text has been machine translated. Show original
Benefits
Work-Life-Integration
Food & Drink
Health, Fitness & Fun
More net
Job Locations
Topics that you deal with on the job
This is your employer
Becton Dickinson Austria GmbH
Wien, Wien
At BD, one of the world's leading medical technology companies, we produce and distribute disposable medical products, devices and reagents with the goal of improving healthcare for people all over the globe.
Description
- Founding year
- 1961
- Language
- English
- Company Type
- Established Company
- Working Model
- Full Remote, Hybrid, Onsite
- Industry
- Healthcare, Social Sector
Product Security Engineer Pharmacy Automation
- Salary
- from 60.000 € Gross/Year
- Location
- Vienna
- Working Model
- Hybrid, Onsite
