Job Description

Life Unlimited. At Smith+Nephew, we design and manufacture technology that takes the limits off living.

Join our dynamic team and embark on an exciting journey of innovation and growth as we seek a hard-working and dedicated individual for role of Product Security Tool Engineer to join our Global IT team. You will work in collaboration with Product Cybersecurity Engineer focused on overseeing and delivering product security scanning and threat model tooling to cross-functional stakeholders across product security and product development teams with the goal of ensuring Smith + Nephew products and their data is secure and resilient to cybersecurity threats.

What will you be doing?

• Role will collaborate with a diverse cohort of internal stakeholders to design, engineer, and ensure implementation of security tools that are utilized through the entire product lifecycle (e.g. threat model, Static Application Security Testing, Dynamic Application Security Testing, Software Composition Analysis).

• You will be responsible for optimizing and configuring these security tools and enabling all necessary integrations.

• Configure, manage, and optimize security tooling across SAST, DAST, SCA, SBOM, and threat modelling.

• Enable continuous improvement of security tooling that considers user experience and scan results.

• Track tool license usage, cost management, and support vendor relationships with tool vendors.

• Evaluate and explore new tool requirements or expanded capabilities, bringing them into the tool portfolio, as required.

What will you need to be successful?

• Education: Bachelor’s degree in a Computer Science or related field, or an equivalent combination of training and experience.
• Licenses/ Certifications: Current CISM, CISSP, CRISC, or equivalent certification preferred.
• Operating Mode: Work from office – Hybrid, 2 days in a week.
• Experience: 4+ years in hands-on cybersecurity experience. Security Tool optimization, management, configurations, and integrations.

• SAST, DAST, SCA, and SBOM tool landscape and configurations.

• Vulnerability Management and Application Security. HIPAA, FDA, ISO 27001/2, NIST CSF, and OWASP.
• Ability to run security tools and complete troubleshooting. Expertise in Vulnerability Management, Application Security, and security tool engineering.

• Excellent customer service skills and problem resolution. Experience in being able to manage and prioritize multiple tasks in an effective manner.

• Ability to work independently and proactively without daily direction. Working across multiple teams and business lines.

You. Unlimited.

We believe in crafting the greatest good for society. Our strongest investments are in our people and the patients we serve.

Inclusion + Belonging - Committed to Welcoming, Celebrating and Thriving. Learn more about our Employee Inclusion Groups on our website https://www.smith-nephew.com/

Other reasons why you will love it here!

• Your Future: Major Medical coverage + Policy exclusions and insurance non-medical limit. Educational Assistance.
• Work/Life Balance: Flexible Personal/Vacation Time Off, Privilege Leave, Floater Leave.
• Your Wellbeing: Parents / Parents in Law’s Insurance, Employee Assistance Program, Parental Leave.
• Flexibility Hybrid Work Model (For most professional roles)
• Training: Hands-On, Team-Customized, Mentorship
• Extra Perks: Free Cab Transport facility for all employees, One Time Meal provided to all employees as per shift. Night Shift Allowances.

#YS1

Stay connected by joining our Talent Community

We're more than just a company - we're a community! Follow us on LinkedIn to see how we support and empower our employees and patients every day.

Check us out on Glassdoor for a glimpse behind the scenes and a sneak peek into You. Unlimited., life, culture, and benefits at S+N.

Explore our website and learn more about our mission, our team, and the opportunities we offer.