Product Security Engineer
Job in
Bedford, Middlesex County, Massachusetts, 01730, USA
Listed on 2026-01-12
Listing for:
Aspen Technology, Inc.
Full Time
position Listed on 2026-01-12
Job specializations:
-
IT/Tech
Cybersecurity, Information Security, IT Consultant, Systems Engineer
Job Description & How to Apply Below
Bedford, Massachusetts time type:
Full time posted on:
Posted Yesterday job requisition :
R8168
The driving force behind our success has always been the people of Aspen Tech. What drives us, is our aspiration, our desire and ambition to keep pushing the envelope, overcoming any hurdle, challenging the status quo to continually find a better way. You will experience these qualities of passion, pride and aspiration in many ways — from a rich set of career development programs to support of community service projects to social events that foster fun and relationship building across our global community.##
** The Role
** Under the direction of the VP of Product Security this role is a key member for day-to-day operations of Product Security at Aspen Technology. This role will help protect our clients, enable teams to deliver secure development, and position us for future security needs.
This thought leader will help drive mitigation of risk thru activities such as developing Threat Models, driving Risk Assessments, reviewing alignment of standard controls to mitigate risks in products, oversee vulnerability tracking, ensure security documentation and compliance with security lifecycle activities for product security releases. This could include supporting compliance documents, secure patch release, security incidents, security communications, the security champion program, and product security verification/validation activities.
This role will work closely with development teams, senior leaders, and teams across the organization. This role will work with teams across the organization to mitigate risks, protect our customers, protect our assets, and enable secure activities. The Sr. Product Security Engineer will support the development and execution of product security strategic efforts to meet business and technology objectives.
This role will also support the continuously improving product security policies, procedures, tools, guidelines, and security awareness. This role will also maintain a vigilant awareness of industry threats, standards, regulations, and best practices to enhance our security profile.##
** Your Impact
*** Responsible for supporting the design, implementation, and oversight of Product Secure Development Lifecycle. Including aspects such as security requirements, secure architecture/design, risk assessment, threat models, security scanning, triage, vulnerability management, security design reviews and product security validation/verification.
* Administers product security practices to product teams, technology, and security champions across the organization.
* Drive Product Security efforts to resolve challenges, enable automation, and impact organization security culture.
* Monitors information security best practices, standards, regulations, industry threats and risks for improvements to product security practices.
* Maintains a deep understanding of current issues in the realm of information security. Subscribes to major industry newsgroups and mailing lists and assesses the impact of all emerging issues on systems and practices at Aspen Technology.
* Monitors security bulletins and alerts from all Aspen Technology’s information system vendors. Evaluates vulnerability impact and formulates and executes risk mitigation plans for product security.
* Member of the Aspen Tech Security Emergency Response Team (ASERT) providing expert analysis of security customer reported security incidents. Works with information resource owners during and after security incidents; work with product teams for analysis; recommends best practices and solutions. Where appropriate, work with product teams, technology teams, client support and customer contacts.
* Occasionally after hours and weekends work to perform tasks that cannot be done during business hours.## What You'll Need
* Bachelor’s degree (B.A./B.S.) or equivalent in computer science or technical equivalent discipline from an accredited college or university required.
* 1-3 years of experience in IT required.
* 1-3 years of experience in an information security role or experience with security and development teams.
* Knowledge of information security regulatory requirements for privacy, secure by design, secure by default and defense in depth.
* Maintains a broad understanding of information security including ISO
27002, NIST 800 and information security frameworks and regulations.
* Desired experience with Application/Product Security, Risk Assessment, Threat Models, Secure Architecture/Design, compliance, and audit.
* Desired experience with cloud solutions such as Azure and AWS
- Experience with security policy, procedures, tools, services, and cloud security models.
* Demonstrated ability to plan, design, develop, deploy, and maintain application security best practices.
* Ability to assume high levels of responsibility and to work with a minimum of day-to-day supervision.
* Ability to…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×