United States of America
OT999: 1CP - Farmington, CT One Carrier Place, Farmington, CT, 06032 USA
Otis is increasing the intelligence and connectivity of our elevator and escalator products. Our global engineering teams are developing software products that enable and deliver end to end solutions. As our technologies evolve, enhancement of our embedded, edge, cloud, and mobile software products for cybersecurity are necessary to provide sufficient operational robustness. The Principal Engineer, Cybersecurity Applications will provide technical leadership in working with our software product development teams and our Cybersecurity experts to ensure that our software products are developed and contain sufficient levels of cybersecurity as required.
Collaborate across functions with Cybersecurity, Software Engineering and Systems teams on product and solution roadmaps, engineering estimations, and tactical project execution related to product security
Maintain global documentation of Otis Engineering SW products that require interactions with the Cybersecurity Team
Coordinate with the global software development teams on targeted functionality, and facilitate reviews with the Cybersecurity Team on necessary features and functions
Take a hands-on approach (down to the software code level as necessary) with the software implementations to define and deliver appropriate requirements and architectural solutions working with the Cybersecurity team on targeted safety objectives
Work with the Software and Cybersecurity groups in support of software intrusion and validation testing of software products. Help with results analysis, and if necessary, corrective actions
Interface with the Global Engineering Centers in executing product development programs in alignment with cybersecurity elements using world class hardware/software development processes
Collaborate with global engineering centers to integrate solutions into elevator and escalator platform programs in multiple regions worldwide
Strategic point of contact between the Otis Engineering Global Software development teams and the Cybersecurity Team
Actively participate in cross-functional elements of Otis technology, product, and strategic plans
The Principal Engineer, Cybersecurity Applications is the technical bridge to help provide leadership in developing strategies, features, and functions that need to be integrated into our software products- embedded, edge, cloud, and mobile to support necessary functions between our software engineering teams and our cybersecurity teams. As the successful candidate, you will possess working knowledge and experience in the development of software products, and the evolving analysis, functional, and test methodologies to support needed cybersecurity requirements.
B.S. Degree in applicable engineering discipline (computer science, software engineering, cybersecurity, data science)
7+ years of automotive, mechanical, electrical or industrial software development experience
General understanding of security technologies and security threats
General understanding of standard security mechanisms and techniques - Encryption, authentication, hashing
Master's Degree preferred in applicable engineering discipline (computer science, software engineering, cybersecurity, data science)
Demonstrated examples of cybersecurity applications for embedded or IoT software products
Familiarity with applied cryptography as used in secure boot, OTA firmware updating, and diagnostics
Understanding of security architecture for infrastructure components as well as applications and data.
Understanding of security protocols such as HTTPS, TLS, SSL, SSH, PKI, IPSEC, VPN and their interactions
Understanding of cybersecurity testing tools like Dependency Track, Dependency Check and analyze the results.
Experience with real-time embedded software for intelligent devices, Linux/Windows application software development, mobile application software development
Knowledge of digital and wireless communication and familiarity with communication technologies such as TCP/IP, Ethernet, Bluetooth, Wi-Fi.
Experience with Agile software development methodologies
Experience with working with outside suppliers to oversee security-related requirements definition, concept approvals, and integration activities
Working knowledge of IEC 62443
Working knowledge of DevSecOps and/or SDLC
Security Certifications GSEC, OSCP, CEH are desirable
Detail-oriented and logical thinker with strong analytical skills; Excellent written and verbal communication skills
Otis is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.
Click on this link to read the Policy and Terms