Univers provides the world's most comprehensive decarbonization system and the global leader for AI in Energy.

We help companies and countries optimize energy systems and reduce carbon emissions with accurate, reliable, and actionable decarbonization data. Our EnOS (Energy and Environment Operating System) platform connects on-the-ground operational technology and in-the-cloud intelligence to deliver real-time energy data and data-driven carbon monitoring, reporting, and abatement.

Our EnOS™ platform empowers enterprises across industries to solve complex energy challenges with intelligent, data-driven insights.

With 280 million devices connected, 788GW of renewables managed, and a global network of 1,200+ customers, we are the only global technology partner offering a truly comprehensive, end-to-end energy management solution, supporting enterprises at every stage of their energy transition journey.

For more information, please visit https://univers.com/

Role: Senior Product Security Engineer

Job Description:

Univers is rapidly growing to meet global demand for our innovative AI-powered cloud and embedded products, and we're looking for a Senior Product Security Engineer to help secure this exciting journey. In this role, you'll work closely with cross-functional teams - including AI/ML, software, UX, and platform engineers - to embed security into every layer of our products, from Edge/IoT devices to large-scale cloud systems.

You'll lead secure development practices, conduct threat modeling, and design robust, resilient architectures that power next-gen AI solutions for Univers and our customers. This is a highly autonomous, technical role where you'll have direct influence over both hardware and software security, shaping products used by many customers globally.

If you're passionate about cutting-edge technology, AI innovation, and security by design, and want to make a global impact while working with talented teams, this is the role for you!

Key Responsibilities:

• Ensure compliance with relevant cybersecurity standards and regulations specific to operational technology environments, such as IEC 62443 4-2, Cyber Resilience Act (CRA) and other industry-specific guidelines.
• Analyze and evaluate the security posture of OT assets, such as ICS devices and SCADA systems, to identify weaknesses and potential entry points for attackers.
• Engineer Security solutions for cloud and embedded products, and the planning and implementation of risk mitigating security solutions.
• Implement security control across the technology stack to meet security and compliance requirements for IaaS, Paas, and SaaS.
• Help prepare reports at appropriate levels of confidentiality for stakeholders to view.
• Responding promptly and in detail to customer-sponsored penetration tests.
• Promote best practices, design patterns, standards through workshops, knowledge sharing, and code walk-throughs.
• Maintain a backlog of security-related tools that will improve the maintainability and security of our code and the pace of development.
• Tailor communication to a variety of audiences and perspectives and anticipate issues to prevent conflict.
• Build and maintain a robust infrastructure/platform/product security roadmap to meet customer demands and regulatory mandates.
• Help develop secure coding standards and training materials to empower engineers to write more secure code.
• Foster a collaborative and cooperative team environment, encouraging input and participation from all members.

Required Qualifications:

• Degree in Computer Engineering or in a STEM major (Science, Technology, Engineering, or Math)
• Experience with broad set of information security technologies and processes within an IaaS, PaaS, and SaaS.
• Proven DevOps and Software development experience (>2 years' experience in application development)
• Expert knowledge of CI/CD and experience working with automation tools (Git, Jenkins) and Infrastructure/Security as Code.
• Experience working with SAST and DAST testing processes and tools.
• Strong understanding of secure coding practices, authentication protocols and understanding of software vulnerabilities and mitigations
• Knowledge of Relational Databases, Non-Relational and TSDB database technologies
• Good knowledge and experience working with virtual infrastructure and containerization technologies.
• Expert knowledge of hardware and web application penetration testing frameworks
• Experience with the application of risk identification and evaluation techniques.
• Skilled at explaining complex technical issues in terms understandable by the business.
• Excellent written and verbal communication skills, especially experience with executive-level communications.
• Experience working with hardening baselines such as those defined in CIS.
• Self-motivated and creative problem-solver able to work independently with minimal guidance.
• Experience with common attack techniques and conducting penetration tests.

Preferred Qualifications:

• Knowledge of Secure boot processes, cryptographic operations and embedded systems security
• Experience in embedded (Edge compute) security, IoT Security and Operational Technology (OT) security.