Product Security Engineer - 6+ Months - Start ASAP

For our long-standing client in North Hesse, we are looking for a Security Architect/Product Security Engineer.
Your main responsibility will be implementing Cyber Resilience Act requirements in existing industrial product software.

Tasks:
* Translate cybersecurity requirements into concrete architectural and product-level requirements
* Define secure design principles, guidelines, and reference architectures
* Design and evaluate technical security solutions (authentication, cryptography, secure communication, updates)
* Conduct security architecture reviews and risk assessments
* Support security testing (eg, penetration testing)
* Contribute to the Secure Software Development Lifecycle and continuous security improvement
* Coordinate project-related activities within the secure development process

Requirements:
* Experience in security architecture for product software or Embedded/OT environments
* Knowledge of .NET, C# or C++ as well as Linux/Embedded Linux
* Experience with industrial systems or automation environments is a plus
* Strong knowledge of secure coding, cryptography (PKI, certificates, key management), and network security
* Familiarity with IEC 62443 and secure development practices
* Experience with security reviews, threat modelling, or risk assessments

Project Details:
* Start: 01 March 2026
* Duration: 6-10 months (option to extend until 31 December 2026)
* Workload: approx. 20 days per month (4-5 days/week)
* Location: North Hesse (approx. 50% onsite initially, later 25-30%)
* Language: English

Telephone interviews with our end client can be arranged at short notice, followed by a quick decision.
If you are interested in this project, or know someone who might be a good fit, please feel free to get in touch.