Sr Application Security Engineer
St. Louis, MO, US, 63146
Job Overview
The Senior Application Security Engineer will exhibit an unwavering commitment to the integration of cybersecurity into products and applications. Success in this role will be attained through skillful collaboration with product engineering and software delivery teams across various projects and languages, adhering to and augmenting Hubbell’s established Secure Development Lifecycle (SDL) standards. If you have a strong foundation in Software as a Service (SaaS) and embedded security, an interest in partnering with engineering teams to identify and address application security vulnerabilities across solutions that help electric, water, and gas utilities provide safe, reliable, and efficient operations of their distribution networks, and enjoy working with a world-class security team, then this might be the job for you.
A Day In The Life
• Continuously refine and promote a comprehensive Secure Development Lifecycle (SDL) process throughout the entire product lifecycle.
• Advocate for the widespread adoption of this unified SDL approach, ensuring a holistic and standardized security framework.
• Establish robust enterprise-wide alliances with product engineering and software delivery teams.
• Cultivate a design-for-security ethos to guarantee secure solutions for Hubbell’s products, services, and tools, thereby contributing to business growth.
• Assess and facilitate secure coding training initiatives and the effective use of application security tools, particularly Static Application Security Testing (SAST) and Software Composition Analysis (SCA), for engineering teams.
• Assume the position of a security advisor for multiple products, leading critical activities such as security strategy reviews, security touchpoints, and final security reviews.
• Assist in the investigation, evaluation, prioritization, and remediation of security vulnerabilities.
• Stay abreast of new and emerging technologies and trends in product cybersecurity.
• Proactively identify developmental areas and seek expert knowledge to fortify Hubbell's risk mitigation strategies and enhance the delivery of secure solutions.
• Serve as a mentor to other members of the product security team, embodying Hubbell's leadership traits.
What will help you thrive in this role?
Required
• Bachelor's degree in computer science or related engineering discipline, or equivalent experience.
• 8+ years of experience in product development and security design focused on secure product delivery and testing tools.
• 5+ years of application security and security testing experience.
• Hands-on experience with two or more of the following: C/C++, C#.NET, ASP.Net, Java, Python, or Rust.
• In-depth knowledge of secure coding and DevSecOps practices.
• Experience using, configuring, and tuning application security tools, especially SAST and SCA.
• Possess excellent written, verbal, and interpersonal communication skills, demonstrating effective communication across all levels of the organization.
• Highly organized and able to work under tight timelines, while balancing competing demands.
Preferred
• Advanced understanding of security approaches and architectures applicable to utility communications and distribution automation solutions for operational technology (OT).
• Previous experience developing embedded products, web services and Service Oriented Architecture (SOA).
• Knowledge of NIST and international security standards for secure development practices.
Competencies
Hubbell Incorporated
Hubbell creates critical infrastructure solutions that power our customers, communities, people and the planet. Our company is strategically aligned around enabling grid modernization and electrification. As more products plug in to an aging grid, Hubbell solutions enable the transition to a more reliable, resilient and efficient energy infrastructure. Founded in 1888 our innovation has made us a leading global manufacturer of high quality electrical and utility solutions enabling customers to operate critical infrastructure reliably and efficiently.
The company operates in two segments. Hubbell Utility Solutions (HUS) enable the grid to conduct, communicate and control energy across utility applications and Hubbell Electrical Solutions (HES) are essential to managing power across a wide range of industries and applications. Our vertical market solutions can be applied to markets including Data Centers, Renewables, Commercial Buildings, Industrial, Telecom and Transportation. Supporting both of our business segments is our corporate and Hubbell Unified Business Solutions teams that provide consistent process, tools technologies across our businesses.
We are committed to operating sustainably and ethically while promoting an inclusive and supportive culture for our people to grow and develop in their careers. Our employees proudly work and serve our communities from our headquarters in Shelton, CT, across the United States and around the globe.
Hubbell Unified Business Solutions
Hubbell Unified Business Services (HUBS) provides corporate shared services to support all businesses across the enterprise. Functional areas include Engineering, Sales, Operations, Marketing, Finance, Legal, IT, Human Resources, Payroll, Environmental Health & Safety, and Compliance. HUBS employees are located around the world.
Hubbell Incorporated, its subsidiaries and affiliates, is an EO Employer AA: M/F/Veteran/Disability. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender identity or any other protected class.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security ASP.NET Automation C Compliance Computer Science DevSecOps Finance Industrial Java NIST Product security Python Rust SaaS SAST Security strategy Strategy Vulnerabilities
Perks/benefits: Career development Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs