Change the future with us.
We are looking for dedicated and talented people who tackle ever-changing challenges, customer needs, and questions from colleagues with clever concepts and creativity. We embrace change and work with curious minds re-inventing the future of work. Join us and let us focus together on what’s truly important: making lives better with new ideas and the latest technology around the world.
Why you’ll love working for Siemens!
- Freedom and a healthy work- life balance– Embrace our flexible work environment with flex hours, telecommuting and digital workspaces.
- Solve the world’s most significant problems – Be part of exciting and creative projects.
- Engaging, challenging, and fast evolving, cutting edge technological environment.
- Opportunities to advance your career and mentorship programs on a local and global scale.
- Competitive total rewards package.
- Profit sharing available.
- Rewarding vacation entitlement with the opportunity to buy and sell your vacation depending on your lifestyle.
- Contribute to our social responsibility initiatives focused on access to education, access to technology and sustaining communities and make a positive impact on the community.
- Participate in our celebrations, social events and offsite business events.
- Opportunities to contribute your innovative ideas and get paid for them!
- Employee perks and discounts.
- Diversity and inclusivity focused.
Siemens is proud to be an eight-time award winner of Canada’s Top 100 Employers, Canada’s Greenest Employers 2025 and Canada’s Top Employers for Young People 2025.
What will you do?
We are seeking a qualified individual to be the Product Security & Solution Security (PSSE) representative for Siemens RuggedCom products across their full lifecycle, from design and manufacturing to deployment and sustainment and and embed Siemens Product & Solution Security (PSS) processes into product development, manufacturing, and operational activities.
Responsibilities:
- Define, maintain, and enforce security requirements for software applications and supporting management systems, with a strong focus on secure software engineering practices.
- Guide, coach, and train software developers to implement secure coding practices and to develop applications correctly (secure-by-design and secure-by-default).
- Perform threat modeling, threat and risk assessments, and security architecture reviews for software applications and related solutions.
- Provide hands-on expertise and consultation on secure architecture, including identity, authorization, secure communication, secrets management, and secure deployment patterns.
- Establish and promote secure software development lifecycle (SSDLC) practices, including security requirements, design reviews, secure coding standards, and security gates.
- Conduct or support secure testing activities such as code reviews, static analysis (SAST), dynamic testing (DAST), dependency scanning (SCA), and penetration testing; help teams interpret results and drive remediation.
- Analyze vulnerabilities (e.g., using CVE and CVSS), assess impact to software products, and drive mitigation and remediation plans with development teams.
- Collaborate closely with software engineering, test/QA, DevOps, IT, and product teams to embed security into development and delivery workflows.
- Support investigation, response, and resolution of software/product security incidents, including documentation, corrective actions, and prevention measures.
- Ensure alignment with relevant security standards and best practices (e.g., OWASP Top 10, secure communication standards, and applicable internal/external requirements).
- Engage with stakeholders to communicate secure architectures, risks, mitigations, and implementation guidance throughout all project phases.
What will you need to succeed?
- Bachelor’s or Master’s degree in computer science, Information Technology, Cybersecurity, Engineering, or a related discipline.
- 3+ years of experience in software development and/or application security, product security, or a closely related field.
- Strong expertise in Python/ C# / .NET development (including modern patterns, libraries, and typical enterprise application architectures).
- Strong knowledge of OWASP (e.g., OWASP Top 10, ASVS) and secure software development best practices.
- Proven ability to mentor, coach, and train developers, and to provide practical, actionable guidance (not just policy).
- Solid experience with secure architecture and secure communication, including authentication/authorization concepts and secure protocol usage (e.g., TLS), and secure API design principles.
- Hands-on experience with secure testing approaches and tools (SAST/DAST/SCA), secure code reviews, and vulnerability remediation workflows.
- Understanding of vulnerability management, threat analysis, and incident handling in software/product environments.
- Knowledge of application and database security (e.g., M
