Product Security & Solution Security Engineer; PSSE), Hybrid

Product Security & Solution Security Engineer (PSSE), Hybrid

495662

24-Feb-2026

Change the future with us.

We are looking for dedicated and talented people who tackle ever-changing challenges, customer needs, and questions from colleagues with clever concepts and creativity. We embrace change and work with curious minds re-inventing the future of work. Join us and let us focus together on what’s truly important: making lives better with new ideas and the latest technology around the world.

Why you’ll love working for Siemens!

• Freedom and a healthy work- life balance– Embrace our flexible work environment with flex hours, telecommuting and digital work spaces.
• Solve the world’s most significant problems – Be part of exciting and innovative projects.
• Engaging, challenging, and fast evolving, cutting edge technological environment.
• Opportunities to advance your career and mentorship programs on a local and global scale.
• Profit sharing available.
• Rewarding vacation entitlement with the opportunity to buy and sell your vacation depending on your lifestyle.
• Contribute to our social responsibility initiatives focused on access to education, access to technology and sustaining communities and make a positive impact on the community.
• Participate in our celebrations, social events and offsite business events.
• Opportunities to contribute your innovative ideas and get paid for them!
• Employee perks and discounts.
• Diversity and inclusivity focused.

Siemens is proud to be an eight-time award winner of Canada’s Top 100 Employers, Canada’s Greenest Employers 2025 and Canada’s Top Employers for Young People 2025.

What will you do?

We are seeking a Product Security & Solution Security (PSSE) representative for Siemens Rugged Com products across their full lifecycle, from design and manufacturing to deployment and sustainment, to embed Siemens Product & Solution Security (PSS) processes into product development, manufacturing, and operational activities.

Responsibilities:

• Define, maintain, and enforce security requirements for Rugged Com hardware, firmware, embedded software, and supporting management systems.
• Perform threat modeling, threat and risk assessments, and security architecture reviews for industrial networking products and customer solutions.
• Analyze vulnerabilities using CVE and CVSS, assess product impact, and drive remediation and mitigation plans.
• Collaborate closely with hardware, firmware, software, test, manufacturing, and IT teams to integrate security into the secure development lifecycle (SDLC).
• Support security measures for manufacturing systems, test environments, and production software, including databases and automation tools.
• Conduct or support security assessments, vulnerability scans, and penetration testing in coordination with internal security and PSIRT teams.
• Support investigation, response, and resolution of product security incidents, including documentation and corrective actions.
• Ensure compliance with industrial cybersecurity standards and regulations, including IEC 62443, NIST, and ISO 27001.
• Support internal and external security audits, certifications, and customer security reviews.
• Engage with customers, suppliers, and internal stakeholders to communicate security architectures, risks, and mitigation strategies throughout all project phases.

What will you need to succeed?

• Bachelor’s or master’s degree in computer science, Information Technology, Cybersecurity, Engineering, or a related discipline.
• 3+ years of experience in cybersecurity, product security,
  application security
  , or a closely related field.
• Strong understanding of network security, system hardening, secure architecture, and secure communication protocols.
• Experience with vulnerability management, threat analysis, and incident response in product or operational environments.
• Familiarity with industrial or embedded systems, manufacturing environments, or critical infrastructure products is highly desirable.
• Knowledge of application and database security (e.g., MS SQL Server, IIS, production and test software environments).
• In-depth knowledge of industrial and IT security standards, including IEC 62443, NIST frameworks, and ISO 27001.
• Cybersecur…