Loading...
Share this Job
Location: 

Kortrijk, BE

Date:  Sep 25, 2020
Job ID:  143

Security Engineer

Barco designs technology that makes everyday life a little better. Seeing beyond the image, we develop sight, sound, and sharing solutions to help you work together, share insights, and wow audiences. Our focus is on three core markets: Enterprise (from meeting and control rooms to corporate spaces), Healthcare (from the radiology department to the operating room), and Entertainment (from movie theaters to live events and attractions). With a team of over 3,600 employees, located all around the globe, we realized sales of 1,082.6 million euro in 2019. 

You will work proactively on the software security of our ClickShare portfolio; Barco's wireless next generation collaboration tools for the meeting room that will be used by thousands of customers.

 

 

Key Responsibilities
 

  • Advise and guide product security strategy (“security by design”) together with product security architect and security office
  • Execute and guide threat modeling exercises and security risk analyses during design/development phases
  • Design and document technical security controls in different product lines ranging from embedded to cloud deployments
  • Challenge R&D teams and system architects about the why and how technical security controls should be integrated
  • Guarantee compliance with privacy regulations from product development perspective in cooperation with product security architect and data protection officer
  • Monitor and improve security controls in the design and development phases:
    • Security baseline
    • Code review process
    • Vulnerability management (e.g. of open source packages)
    • Vulnerability scanning (tooling and configuration)
    • Application security testing
  • Follow up incident response management and vulnerability disclosure processes
  • Follow up ISO 27001 ISMS/audit for all product development related subjects
  • Create security whitepapers of the different product lines
  • Stay up-to-date with latest security/privacy technologies, trends and regulations and translate impact to the business stakeholders

 


Qualifications

 

  • Master's degree in IT or information security, or equivalent by experience
  • Preferably development experience in international environment (security defensive side)
  • Solid understanding of security protocols, cryptography, authentication, authorization and best practices
  • Broad technical knowledge: from embedded devices to cloud deployed services
  • Familiar with OWASP project (Top 10, ASVS, SAMM, …)
  • Coding skills: C, C++, javascript
  • Experience with agile development process across international teams
  • Well respected and influential, able to emphasize methodology, modeling, and governance, technologically neutral, persuasive, and enthusiastic
  • Good verbal, written, presentation, facilitation, and interaction skills, including ability to effectively communicate risks, issues and concepts to multiple organization levels and executive management
  • Customer centric mindset
  • Fluent in both spoken and written English
  • If you don't match all the above requirements, but you have a strong interest in security (willing to specialise), we invite you to apply!