Siemens Energy
我們基於創新技術以及實現想法的能力,支援客戶迎向更永續的世界,為社會注入活力。我們在全球擁有近 94,000 名員工,塑造當今和未來的能源系統。
關於職位
地點
Israel
HaMerkaz
遠程辦公或者公司辦公
混合模式(遠程辦公/公司辦公)
公司
Siemens Energy Ltd.
組織
EVP Global Functions
業務單位
Digital Products and Solutions
全職/兼職
全職
經驗等級
中級專業人士
About the Role
We are looking for an experienced Application Security Specialist to partner with our engineering, product, and security teams to ensure our applications are designed, built, and maintained securely. In this role, you will embed security throughout the development lifecycle, guide developers through secure design and coding practices, and help build the processes, tools, and culture that enable secure innovation at scale.
You will serve as a hands-on technical expert, a trusted advisor, and a security advocate - helping teams ship high-quality, secure software while reducing risk across our application landscape.
Responsibilities
? Security Assessments & Technical Expertise
o Perform security assessments for web, mobile, and API applications, including code reviews, threat modeling, and targeted penetration testing.
? Identify, analyze, and track vulnerabilities; deliver clear and actionable remediation guidance to development teams.
? Support application-related security incidents by providing technical expertise during investigation and remediation.
? Secure Development Lifecycle (SDLC) Enablement -
Work closely with product and engineering teams to embed security requirements and best
practices across all phases of the SDLC.
? Develop and maintain secure coding guidelines, security standards, and architectural patterns.
? Lead security design discussions and partner with teams to make informed, secure technical decisions.
? Security Automation & Tooling
o Integrate and optimize automated security testing tools (SAST, SCA, DAST, container
scanning) within the CI/CD pipeline.
o Collaborate with developers to build or refine internal tooling that supports secure development workflows.
o Continuously evaluate new security technologies, methodologies, and processes.
? Training, Culture & Advocacy
o Design and deliver secure coding and application security training for engineering teams.
o Promote a positive security culture through collaboration, mentorship, and clear communication.
o Contribute to initiatives such as security champions programs or process improvements that elevate organization-wide security maturity.
Qualifications
Required
? Bachelor’s degree in computer science, Cybersecurity, or a related field - or equivalent hands-on experience.
? Several years of experience in application security, software security engineering, or penetration testing.
? Strong understanding of common vulnerabilities and mitigation strategies (OWASP Top 10, CWE, SANS Top 25).
? Proficiency in at least one major programming language (e.g., C++, Python, Java, Node.js, Go) for code review and tooling work.
? Experience with security assessment tools such as Burp Suite, OWASP ZAP, SAST/SCA platforms, and CI/CD integrations.
? Excellent communication skills with the ability to explain complex security topics to technical and non-technical audiences.
Preferred
? Relevant certifications such as CSSLP, OSCP, CEH, or similar.
? Experience leading technical training, workshops, or developer education programs.
? Familiarity with cloud-native environments and modern DevOps tooling (Docker, Kubernetes, AWS/GCP/Azure).
What Success Looks Like
? Security controls and tooling are smoothly integrated into the development workflow.
? Development teams actively engage with security and apply secure coding principles.
? Vulnerabilities are identified early and remediated efficiently.
? Security processes and documentation are clear, repeatable, and consistently followed.
? The organization’s overall application security posture measurably improves.
About the Team
The Digital Products & Solutions organization is responsible for developing software solutions for both internal and external customers. These solutions include Edge Computing and applications, On-site sensor technology integration, Cloud-based platforms and cloud-based software solutions and applications.
The solutions, applications, and platforms we provide allow data acquired to be used to improve the operation and maintenance of power plants and industrial facilities of all sizes this includes the development of digital twins, analytics platforms and agents, artificial intelligent and machine learning applications and algorithms.
Who is Siemens Energy?
At Siemens Energy, we are more than just an energy technology company. With ~100.00 dedicated employees in more than 90 countries, we develop the energy systems of the future, ensuring that the growing energy demand of the global community is met reliably and sustainably. The technologies created in our research departments and factories drive the energy transition and provide the base for one sixth of the world's electricity generation.
Our global team is committed to making sustainable, reliable, and affordable energy a reality by pushing the boundaries of what is possible. We uphold a 150-year legacy of innovation that encourages our search for people who will support our focus on decarbonization, new technologies, and energy transformation.
Find out how you can make a difference at Siemens Energy: https://www.siemens-energy.com/employeevideo
Lucky for us, we are not all the same. Through diversity we generate power. We run on inclusion and our combined creative energy is fueled by over 130 nationalities. Siemens Energy celebrates character – no matter what ethnic background, gender, age, religion, identity, or disability. We energize society, all of society, and we do not discriminate based on our differences.
Rewards/Benefits
- In addition to an attractive remuneration package in line with the market, you can expect an attractive employer-financed company pension scheme
- We also offer the opportunity to become a Siemens Energy shareholder
- We offer our employees the opportunity to work flexibly and remotely, and our inspiring offices provide space for collaboration and creativity
- The professional and personal development of our employees is very important to us. We provide them with the opportunities to learn and develop in a self-determined way, various attractive programmes and learning materials are available for this purpose
- In relation to the "compatibility of family and work", we have a wide range of offers, e.g. flexible working time models, childcare places at many locations, the possibility of trial part-time work or even a sabbatical