OshkoshRecruiter Since 2001
the smart solution for Oshkosh jobs

Product Cybersecurity Analyst

Company: Oshkosh Corporation
Location: Oshkosh
Posted on: June 1, 2021

Job Description:

At Oshkosh, we build, serve and protect people and communities around the world by designing and manufacturing some of the toughest specialty trucks and access equipment. We employ over 15,000 team members all united by a common purpose. Our engineering and product innovation help keep soldiers and firefighters safe, is critical in building and keeping communities clean and helps people do their jobs every day.

Oshkosh Corporation is seeking a Product Cyber Security Analyst to join our product development team. The Product Cyber Security Analyst works with customers, project managers and the product engineering team to support secure embedded software development for automotive, and connected products. They will have a key role in supporting the risk management framework (RMF) for ongoing software projects and will monitor released products for vulnerabilities.

Essential Duties and Responsibilities:

* Assist the product engineering team in writing cyber security requirements, test plans and testing

* Apply risk management frameworks (RMF) to product development

* Peer review security critical areas of software and device configuration

* Document cybersecurity compliance

* Complete STIGs for embedded products

* Monitor software applications and libraries for security vulnerabilities

* Write and maintain secure software development processes, procedures, and other associated documentation

* Translate cybersecurity standards into practical processes, procedures and internal standards

* Mentor software engineers in writing secure software

Basic Qualifications:

* 5 to 10 years of experience relevant to this position

* Bachelor's degree in a cyber security, computer, software or engineering discipline

* Have a DoD Approved 8570 Baseline Certification for an IAM Level I role, or higher

* Position requires the ability to obtain a security clearance

* Experience applying STIGs and hardening Windows and Linux systems

* Server / workstation administration skills in both Windows and Linux

* Experience in running and managing vulnerability assessment tools

* Familiarity of relevant security standards such as: SAE J3061, NIST 800 series, FIPS 140

Preferred Qualifications:

* Master's degree in a cyber security, computer, software or engineering discipline

* Experience writing software in C/C++, Python, HTML/CSS, JavaScript

* Experience writing software for embedded controllers and IoT

* Familiarity applying STIGs to embedded systems

* Experience integrating symmetric and/or public key encryption into software applications

* Experience writing requirements for secure software systems

* Firewall and webserver administration experience, such as: Nginx, IIS, Tomcat and Apache

* Experience performing penetration tests on embedded and/or IoT systems

* Experience using and managing static analysis and software composition analysis tools

* Experience applying STIGs and hardening embedded systems

Oshkosh is committed to working with and offering reasonable accommodation to job applicants with disabilities. If you need assistance or an accommodation due to disability for any part of the employment process, please contact us at: 920-502-3009 or corporatetalentacquisition@oshkoshcorp.com.

Oshkosh Corporation is an Equal Opportunity and Affirmative Action Employer. This company will provide equal opportunity to all individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. Information collected regarding categories as provided by law will in no way affect the decision regarding an employment application.

Oshkosh Corporation will not discharge or in any manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with Oshkosh Corporation's legal duty to furnish information.

Certain positions with Oshkosh Corporation require access to controlled goods and technologies subject to the International Traffic in Arms Regulations or the Export Administration Regulations. Applicants for these positions may need to be "U.S. Persons," as defined in these regulations. Generally, a "U.S. Person" is a U.S. citizen, lawful permanent resident, or an individual who has been admitted as a refugee or granted asylum.

Keywords: Oshkosh Corporation, Oshkosh , Product Cybersecurity Analyst, Other , Oshkosh, Wisconsin

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Log In or Create An Account

Get the latest Wisconsin jobs by following @recnetWI on Twitter!

Oshkosh RSS job feeds