Ph3Position Summary /h3 pWe are looking for a candidate that will join our Cybersecurity team in Pomezia (Rome). The Cybersecurity Engineer II is a specialist working within the STERIS RD controls department. The responsibilities include: analyzing software and hardware for potential vulnerabilities, creating work instructions for secure software maintenance, collaborating with product development teams for secure designs, conducting vulnerability assessments, and participating in incident response efforts. He/she will focus on creating and maintaining the security standards that contribute to the safety and integrity of critical healthcare technology. /p h3Duties /h3 ul liReceive and analyze CVEs from open‑source sources, determine applicability to STERIS products, and collaborate with product teams to gather information needed for CVE impact and applicability assessments. /li liDevelop and track software bill of materials (SBOM), track vulnerabilities in SBOM, and work with product teams to remediate the vulnerabilities. /li liIdentify potential software security vulnerabilities and collaborate with product teams for remediation and planning. /li liAssist and support product security risk assessments, requirements analysis, and test methods. /li liEvaluate and execute product security testing including test planning, cases, and procedure development. /li liPerform vulnerability assessment and network scanning activities. /li liPerform internal fuzz testing to identify potential product vulnerabilities. /li liReproduce penetration testing findings to help product teams understand security issues and develop effective remediations. /li liImplement proposed security controls/methods to software embedded in STERIS products and other software applications for the assigned product(s) or project(s). /li liResearch new techniques and methods to enhance internal security testing practices and improve overall device security. /li /ul h3Duties - cont'd /h3 ul liParticipate in improvement projects related to Cybersecurity technology, tools, and practices. /li liWork on cybersecurity assessments and documentation required for FDA 510(k) submissions, including but not limited to security risk management, threat. modeling, security architecture views, vulnerability management, and regulatory compliance deliverables. /li liRespond to Cybersecurity Questionnaires from STERIS Customers. /li liCreate and update FAQs, White Paper/Knowledge Articles based on commonly asked questions by Customers. /li liPerform other related and evolving job-related duties as assigned. /li /ul h3Education Degree /h3 ul liBachelor's Degree in Computer Science /li /ul h3Required Experience Competencies /h3 ul liBachelor’s degree in computer engineering,, Software Engineering, or Cybersecurity required. /li liAt least 3 years of direct experience in the field of cybersecurity, conducting cybersecurity risk assessments and security testing. /li liAt least 1 years’ experience in cybersecurity vulnerability assessment and software development lifecycle. /li liKnowledge in programming languages like Python, C++/C/C#, Java etc. /li liExperience in analyzing penetration test results and recommending corrective actions. /li liEnglish at level B2 minimun /li /ul h3Preferred Experience /h3 ul liExperience with vulnerability scanning tools and threat intelligence services is a plus. /li liExperience using Threat Modeling tools and conducting penetration testing is desirable /li liSoftware security certification such as SSCP or CISSP is desirable /li liKnowledge of Windows and Linux operating systems and OS configurations is desirable /li liExperience in writing software security requirements is desirable /li /ul h3Skills /h3 ul liTeam player with the ability to interact with multiple product development teams across multiple locations /li liKeen interest in acquiring technical knowledge of leading techniques, standards and practices related to software system security /li liDevelop knowledge about various types of cyberattacks and appropriate defenses /li liStrong communication and problem‑solving skills /li liExperience in developing applications/scripts for multiple operating systems /li /ul pSTERIS strives to be an Equal Opportunity Employer. /p /p #J-18808-Ljbffr