Software Security Engineer

Xylem Inc. Charlotte , NC 28201

Posted 1 month ago

Xylem |zlm|

  1. The tissue in plants that brings water upward from the roots;
  2. a leading global water technology company.

We're a global team unified in a common purpose: creating advanced technology solutions to the world's water challenges. Developing new technologies that will improve the way water is used, conserved, and re-used in the future is central to our work. Our products and services move, treat, analyze, monitor and return water to the environment, in public utility, industrial, residential and commercial building services settings. Xylem also provides a leading portfolio of smart metering, network technologies and advanced analytics solutions for water, electric and gas utilities. In more than 150 countries, we have strong, long-standing relationships with customers who know us for our powerful combination of leading product brands and applications expertise with a strong focus on developing comprehensive, sustainable solutions. For more information, please visit us at www.xylem.com

If you are excited and passionate about helping us solve water, we want to hear from you!

The Role: As member of security technologies team, the Software Security Engineer is responsible for identifying and fixing vulnerabilities in software and applications on all Sensus products.. This position will work across software and firmware development teams to identify component and system level technical risks, identify and evaluate critical failure points, determine technical security controls to mitigate risks, prioritize and schedule controls with development timelines, and work with cross functional teams to implement features.

Responsibilities:

  • Champion the Sensus's product security SDLC. This includes security testing, penetration testing, and security bug fixes.

  • Perform vulnerability research, assessment and management , serve as technical security/risk advisor on all new technology/developed by Sensus

  • Perform threat modeling, static application security testing, code reviews, and secure design reviews for high risk applications.

  • Automate security testing using a variety of scripting and open source tools

  • Implement or manage the implementation of common application security controls, ensuring that practices meet software certification processes

  • Assist developers in remediating vulnerability findings by providing line-by-line guidance.

  • Provide training and education to developers on software security best practices.

  • Develop testing and auditing of Cloud computing, and Big Data platforms

Requirements:

  • BSCS or equivalent with 6+ year's experience

  • Security audit, Vulnerability assessment and packet analysis skills

  • Strong operating systems knowledge Windows (all flavors), Red Hat Linux, Solaris

  • Strong project planning and execution skills

  • A rigorous approach to analyzing and resolving complex technical problems

  • Good analytical and debugging skills; strong software aptitude and creative ability.

  • Scripting knowledge Linux scripting (bash), Windows scripting, Python or Perl

  • Database knowledge Postgres, MSSql, Oracle

  • Programming knowledge Java, C#

  • Good organizational skills.

  • Self-motivated; ability to work under general supervision; receptive and supportive of team efforts.

Preferred Qualifications:

  • Expertise in either Cloud computing security and/or Big data security

  • Forensic analysis skills

  • CISSP, or another security certification

  • Excellent written & oral communication skills and coordination with peers, end-users, and management

Physical Demands:

(The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.)

  • Regularly required to sit or stand, reach, bend and move about the facility

Work Environment:

(The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.)

  • Office: Standard office equipment; work usually performed in an office setting free from any disagreeable elements.

  • Standard weekly job hours: 40 hours

EOE including disability and veteran


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Software Engineer FullStack Developer

Moody's Analytics Knowledge Services

Posted 2 days ago

VIEW JOBS 4/18/2019 12:00:00 AM 2019-07-17T00:00 * Brainstorm, design and develop an enterprise software product. * Design and implement re-usable software components. * Ensure the product is highly configurable and extensible. * Work collaboratively with a core team of architects and developers spread across different locations. * Get involved in full-stack development. * Perform gap analysis and provide business solutions. * Work with a variety of client and server side frameworks – open source and home grown. Rapidly prototype new products and see through implementation. * Part of the innovation team experience both heads down coding time as well as active participation product design. * Explore emerging technologies including natural language processing/understanding. * Research and build POCs using available frameworks to ensure feasibility. * Perform gap analysis and provide business solutions Qualifications RequiredBachelor's degree or higher in Computer Science is preferred. However other fields like information systems, electrical or STEM will be considered. * Must have Java, Python, Spring (Boot, MVC) SQL (Oracle) Json Apache TiKa POI Tomcat/JBoss * Must have Informatica ETL * Good experience of relational and NoSQL technologies such as MongoDB, ElasticSearch is a plus, * AngularJS , Express JS, Node JS. * Strong debugging, analytical and problem solving abilities. * Strong written and verbal communication skills. Preferred * Experience with Docker, Kubernetes a plus * Experience with GitHub a plus * Knowledge of distributed frameworks such as Spark/Kafka is a plus * Experience with AWS cloud services such as EC2, EMR, RDS, S3 is a plus #LI-TL1 Moody's is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, sex, gender, age, religion, national origin, citizen status, marital status, physical or mental disability, military or veteran status, sexual orientation, gender identity, gender expression, genetic information, or any other characteristic protected by law. Moody's also provides reasonable accommodation to qualified individuals with disabilities in accordance with applicable laws. If you need to inquire about a reasonable accommodation, or need assistance with completing the application process, please email accommodations@moodys.com.. This contact information is for accommodation requests only, and cannot be used to inquire about the status of applications. For San Francisco positions, qualified applicants with criminal histories will be considered for employment consistent with the requirements of the San Francisco Fair Chance Ordinance. For New York City positions, qualified applicants with criminal histories will be considered for employment consistent with the requirements of the New York City Fair Chance Act. For all other applicants, qualified applicants with criminal histories will be considered for employment consistent with the requirements of applicable law. Click here to view our full EEO policy statement. Click here for more information on your EEO rights under the law. Candidates for Moody's Corporation may be asked to disclose securities holdings pursuant to Moody's Policy for Securities Trading and the requirements of the position. Employment is contingent upon compliance with the Policy, including remediation of positions in those holdings as necessary. Moody's Analytics Knowledge Services Charlotte NC

Software Security Engineer

Xylem Inc.