A global technology group with a long-standing reputation for disciplined growth and long-term investment is expanding its product security capability following increased board-level focus and funding.
As products become more connected, software-driven, and deployed in operational environments, the organisation is strengthening how security and privacy are built into products from design through to deployment.
This is a newly created senior role, forming part of a multi-year, globally scoped programme with executive sponsorship.
The Senior Product Security Specialist will work across an international portfolio of engineering-led businesses, focusing on the security of products that combine hardware, software, and connected technologies.
The role is hands-on and assessment-led, with regular international travel to work directly with engineering and product teams in real-world environments.
Key Responsibilities
* Conduct threat modelling for software and hardware products, including embedded systems and industrial / operational technology environments
* Identify and assess design-stage security and privacy risks across the product development lifecycle
* Evaluate product security across:
* Embedded firmware and IoT products
* Web applications and digital services
* Supporting cloud and data processing components
* Perform structured product security assessments and provide clear, actionable remediation recommendations
* Communicate product security and privacy risks effectively to engineering teams and senior stakeholders
This role is focused on product security and secure product development, not SOC operations or compliance-only governance.
Experience Required
* Demonstrated experience securing products, rather than solely enterprise IT or cloud platforms
* Strong background in threat modelling across embedded, IoT, industrial, or software-driven products
* Solid understanding of secure product development lifecycles and privacy-by-design principles
* Comfortable working independently in complex engineering environments and influencing without authority
* Clear, professional communication skills suitable for senior technical and business audiences
* Willingness and ability to travel internationally on a frequent basis
* Experience applying recognised security standards and frameworks such as: ISO/IEC 27000, ISA/IEC 62443, NIST SP 800-218.
You will be expected to clearly articulate product security and privacy risks to senior technical and business stakeholders, providing insight that informs executive and board-level decision-making.
Apply or reach out for a confidential conversation.
#J-18808-Ljbffr