Description
In this role, you will lead the cross-product efforts to regularly assess threats and vulnerabilities, perform Security DFMEA, and facilitate penetration tests on products throughout its lifecycle. You will use the findings from new threats to improve processes and productivity by providing guidance and implementing priority updates based on findings. Your tasks include developing and capturing requirements, writing software, coordinating implementation, and helping the team to deliver product security goals. You will work closely with Systems, Hardware, Software, and teams to understand customer needs, align product security with overall practices, and define effective product security solutions and oversee their development.
Core Job Responsibilities (others may be added):
Risk Management: Assess product security risks, develop comprehensive mitigation strategies, and evaluate technical and business trade-offs.
Lead Security Activities: Apply the Secure Development Lifecycle and lead product security processes including architectural analysis, threat modeling, security DFMEA, penetration testing, attack modeling and simulation, and data privacy impact assessments.
Vulnerability Management: Identify, evaluate, and verify security issues discovered through automated testing, penetration testing, and customer feedback. Maintain and track closure of vulnerability backlogs.
Compliance & Standards: Interpret and enforce product security requirements, conduct vulnerability reviews, and ensure compliance with industry regulations and standards (IEC 62443, ISO 21434, NIST, etc.).
Security Tools Oversight: Monitor outputs and effectiveness from all security tools integrated within the software development lifecycle.
Technical Guidance: Advise, guide, and mentor cross-disciplinary engineering teams during the design, review, and implementation of security features.
Assurance: Validate that software meets all functional, security, regulatory (cybersecurity compliance), and quality benchmarks—particularly within industrial and transportation environments.
Key Competencies & Skillset
Embedded Systems Experience: Demonstrated expertise in securing embedded controls platforms, with hands-on knowledge of Embedded Linux (e.g., Yocto) and RTOS environments (e.g., FreeRTOS, Zephyr Project, MicroC/OS-II). industrial communication protocols—CAN J1939, MQTT, OPC-UA, secure IP-based protocols, and Automotive Ethernet (100Base-T1, 10Base-T1S).Security Analysis: Strong grasp of static analysis (SAST) and software composition analysis techniques for vulnerability detection and remediation.DevOps & Automation: Familiarity with modern DevOps pipelines and tools (e.g., GitHub Actions, Azure DevOps, GitLab CI), with practical knowledge of automated testing frameworks (e.g., CppUTest).Communication & Collaboration: Effective communicator with strong organizational skills, adept at working with cross-functional teams and presenting technical risks to varied audiences.Continuous Improvement: Commitment to ongoing learning and driving continuous maturity in product security processes and technical strategies.Preferred QualificationsBachelor’s or Master’s degree in computer engineering, computer science, electrical engineering or related technical field with 5+ years of experience.Preferred that the candidate have experience as an embedded product security engineer.Experience with embedded software development and proficiency in relevant programming languages (e.g., C, C++, C#, Rust, Python).Multi-region travel up to 5% may be requiredSkills
embedded software, C++, security engineering, product security, Security system
Additional Skills & Qualifications
Bachelor’s or Master’s degree in computer engineering, computer science, electrical engineering or related technical field with 5+ years of experience.
Preferred that the candidate have experience as an embedded product security engineer.
Experience with embedded software development and proficiency in relevant programming languages (e.g., C, C++, C#, Rust, Python).
Multi-region travel up to 5% may be required
Job Type & Location
This is a Contract position based out of Minneapolis, MN.
Pay and BenefitsThe pay range for this position is $50.00 - $70.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following: • Medical, dental & vision • Critical Illness, Accident, and Hospital • 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available • Life Insurance (Voluntary Life & AD&D for the employee and dependents) • Short and long-term disability • Health Spending Account (HSA) • Transportation benefits • Employee Assistance Program • Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace TypeThis is a hybrid position in Minneapolis,MN.
Application DeadlineThis position is anticipated to close on Feb 10, 2026.
About ActalentActalent is a global leader in engineering and sciences services and talent solutions. We help visionary companies advance their engineering and science initiatives through access to specialized experts who drive scale, innovation and speed to market. With a network of almost 30,000 consultants and more than 4,500 clients across the U.S., Canada, Asia and Europe, Actalent serves many of the Fortune 500.
The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
If you would like to request a reasonable accommodation, such as the modification or adjustment of the job application process or interviewing due to a disability, please email actalentaccommodation@actalentservices.com for other accommodation options.