Principal Security Engineer at Beacon Hill Staffing Group, LLC in Milwaukee, Wisconsin

Job Description:

Position Overview: We are seeking a highly skilled and experienced Principal Security Engineer to join our product security team. This role is vital in strengthening the security posture of our products, including their cloud environments and networks, by ensuring compliance with industry standards such as IEC 62443. The ideal candidate will have a deep understanding of product and cloud security, hands-on experience with security assessments, and a strong ability to collaborate with engineering teams. This position requires a passion for developing security practices within an agile methodology and driving continuous improvement in the company's security processes.

Key Responsibilities:

• Lead security efforts for both product and cloud environments. You will work closely with infrastructure, networking, and product development teams to secure the entire product lifecycle.


• Review and implement IEC 62443 controls for product security. Conduct gap assessments, identify control deficiencies, and ensure proper evidence is collected and logged within our security tools (e.g., CyberSaint).


• Oversee and manage external penetration testing engagements, ensuring comprehensive testing and accurate results interpretation. Ability to assess penetration test reports for validity and accuracy.


• Develop and standardize the Security Review process (including Security Reviews 1 and 2), ensuring consistency across all product lines. Collaborate with teams to ensure security checks are embedded in the product lifecycle (Concept, Design, Design Lock, Tooling).


• Work closely with cross-functional teams including product developers, engineers, and senior leaders to define and implement security requirements throughout the development process.


• Operate within an Agile framework to continuously improve and iterate on security processes while collaborating with agile teams to ensure security best practices are followed.


• Maintain detailed documentation of all security assessments, including gap assessments, security review results, and action items for remediation.


• Provide mentorship to junior team members, lead security initiatives, and influence security practices across the organization.

Qualifications:

• 7+ years of experience in security engineering, with a strong focus on product security, cloud security, and penetration testing. Previous experience in managing security compliance and performing risk assessments is essential.

Technical Skills:

• In-depth knowledge of security frameworks and standards (IEC 62443, ISO 27001, NIST, etc.).


• Strong familiarity with cloud security practices (AWS, Azure, GCP, etc.).


• Experience working with networking, infrastructure, and firmware security.


• Ability to interpret penetration test results and provide actionable feedback.


• Familiarity with security tools and platforms (e.g., CyberSaint, CES Vault, Powercell Consulting).


• Expertise in managing security risk, conducting vulnerability management, performing threat modeling (e.g., STRIDE), and implementing secure development practices (e.g., Secure DevOps, SDLC).


• Excellent communication and collaboration skills, with a demonstrated ability to work in a cross-functional team environment. Ability to influence security best practices and mentor others in security principles.

Nice-to-Have:

• CISSP, CISM, CISA, CEH, OSCP, or other relevant security certifications.


• Experience with Agile development environments and working in DevSecOps teams.


• Familiarity with industrial or product-specific security standards such as IEC 62443.


• Experience with penetration testing tools and vulnerability assessment platforms.

Beacon Hill is an Equal Opportunity Employer that values the strength diversity brings to the workplace. Individuals with Disabilities and Protected Veterans are encouraged to apply.



California residents: Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.


If you would like to complete our voluntary self-identification form, please click here or copy and paste the following link into an open window in your browser: https://jobs.beaconhillstaffing.com/eeoc/


Completion of this form is voluntary and will not affect your opportunity for employment, or the terms or conditions of your employment. This form will be used for reporting purposes only and will be kept separate from all other records.


Company Profile:


Beacon Hill Technologies, a premier National Information Technology Staffing Group, provides world class technology talent across all industries utilizing a complete suite of staffing services. Beacon Hill Technologies' dedicated team of recruiting and staffing experts consistently delivers quality IT professionals to solve our customers' technical and business needs.


Beacon Hill Technologies covers a broad spectrum of IT positions, including Project Management and Business Analysis, Programming/Development, Database, Infrastructure, Quality Assurance, Production/Support and ERP roles.


Learn more about Beacon Hill and our specialty divisions, Beacon Hill Associates, Beacon Hill Financial, Beacon Hill HR, Beacon Hill Legal, Beacon Hill Life Sciences and Beacon Hill Technologies by visiting www.bhsg.com .


Benefits Information:


Beacon Hill offers a robust benefit package including, but not limited to, medical, dental, vision, and federal and state leave programs as required by applicable agency regulations to those that meet eligibility. Upon successfully being hired, details will be provided related to our benefit offerings.


We look forward to working with you.


Beacon Hill. Employing the Future™
Apply Now