Associate Product Security Engineer

Associate Product Security Engineer

Now is an amazing time to join Nozomi Networks as we build the future of OT and IoT cybersecurity. We defend some of the world’s largest organizations and critical infrastructure in more than 68 countries and we’re just getting started. Our AI‑powered cybersecurity platform secures operational technology (OT) and Internet of Things (IoT) infrastructures for enterprises and government entities across energy, manufacturing, transportation, resources, and critical infrastructure.

As we expand our product portfolio and global presence, our Engineering department is hiring an Associate Product Security Engineer to support and grow our product security efforts at Nozomi Networks.

You could be the next “Nozomier”! If this sounds like you, read on.

• Embody the Nozomi Networks Cultural Pillars and our mission to protect what matters most with transparency and trust
• Support security assessments such as vulnerability scans and basic penetration testing activities
• Assist in reviewing and validating security findings
• Contribute to risk assessments and security testing of products and features
• Participate in code reviews and learn to identify potential security issues
• Support Software Composition Analysis (SBOM) and CVE tracking activities
• Assist in implementing and testing security features
• Collaborate with internal teams and learn from senior engineers and external experts
• Contribute to security‑related projects and research as part of your development

• A degree in Computer Science, Cybersecurity, or a related field (or equivalent practical experience)
• Basic understanding of application and/or product security concepts
• Familiarity with software development principles or experience with at least one programming/scripting language
• Interest in secure coding practices and identifying vulnerabilities
• Basic knowledge of networking fundamentals (e.g., TCP/IP, HTTP/HTTPS)
• Awareness of common security concepts (e.g., authentication, encryption, OWASP Top 10)
• Willingness to learn about security frameworks such as ISO 27001 or NIST
• Familiarity with Linux/Unix environments is a plus
• Exposure to cloud platforms (AWS, Azure, or GCP) is a plus
• Good English communication skills, both written and spoken
• Strong curiosity, problem‑solving mindset, and eagerness to learn

• Internship or academic project experience in security or software development
• Exposure to tools for static analysis, vulnerability scanning, or penetration testing
• Any relevant certifications (or interest in pursuing them)

Successful candidates will be subjected to background verification checks.

• Health & Wellness
• Financial
• Work‑Life Balance
• Unparalleled Flexible Time‑Off