OneMain Financial Jobs

Position:

Product Security Engineer - (IOT, Embedded)

Job Description:

Key Responsibilities

• Conduct security assessments and technical reviews of applications, systems, and technology platforms.

• Identify security risks across products, infrastructure, and supporting technologies and recommend mitigation strategies.

• Perform threat analysis and risk assessments to evaluate potential security weaknesses.

• Manage vulnerability identification, triage, prioritization, and remediation tracking across technology environments.

• Review security findings from scanning tools and coordinate remediation with engineering and operations teams.

• Monitor security advisories and vulnerability intelligence related to technologies used within the organization.

• Validate implementation of security controls through technical testing and configuration reviews.

• Support security reviews for new technologies, products, and third-party components introduced into the environment.

• Track and manage security issues related to open-source components and external dependencies.

• Ensure security risks are documented, tracked, and remediated within defined timelines.

• Support investigation of security incidents related to application or technology vulnerabilities.

• Maintain documentation for security assessments, risk evaluations, and remediation activities.

• Participate in internal security reviews, audits, and assurance activities.

• Collaborate with engineering, product, infrastructure, and governance teams to address security risks.

• Contribute to the improvement of security processes, tools, and operational practices within the security team.

Required Qualifications

• Bachelor’s degree in Cybersecurity, Information Security, Computer Science, or related field.

• 3 to 6 years of experience in security engineering, application security, vulnerability management, or security assessment roles.

• Strong understanding of common application and system security risks including OWASP Top 10 and common vulnerability classes.

• Experience with vulnerability scanning tools, security testing tools, or security assessment methodologies.

• Familiarity with vulnerability management workflows and risk prioritization practices.

• Knowledge of common enterprise technologies, operating systems, and application architectures.

• Experience reviewing security configurations and validating implementation of security controls.

• Ability to interpret security findings and work with technical teams to drive remediation.

• Strong analytical and problem-solving skills with attention to technical detail.

Location:

IN-GJ-Ahmedabad, India-Ognaj (eInfochips)

Time Type:

Full time

Job Category:

Engineering Services

Arrow Electronics, Inc.'s policy is to provide equal employment opportunities to all qualified employees and applicants without regard to race, color, religion, age, sex, marital status, gender identity or expression, sexual orientation, national origin, disability, citizenship, veran status, genetic information, or any other characteristics protected by applicable state, federal or local laws. Our policy of equal employment opportunity and affirmative action applies to all employment decisions personnel policies and practices, or programs.