Senior Application Development Cyber Security Engineer

GE Vernova

Boston, MA(remote)

Apply

JOB DETAILS

SKILLS

Analysis Skills, Authentication, Automation, Best Practices, C Programming Language, C++ Programming Language, CISSP - Certified Information Systems Security Professional, Certified Insurance Examiner (CIE), Cloud Computing, Code Reviews, Communication Skills, Computer Firmware, Computer Science, Computer Security, Conferences, Cross-Functional, Cryptographic Protocols, Cyber-Physical, Documentation, Embedded Hardware, Embedded Software, Embedded Systems, Emerging Technology, Energy & Utilities, Energy Management, Engineering, Forensic Science, Fuzz Testing, GIAC - Global Information Assurance Certification, GPEN - GIAC Penetration Tester, Hardware Architecture, IEEE (Institute of Electrical and Electronic Engineers), ISA Standards, Identity Data Management, Incident Response, Industry Standards, Information Technology & Information Systems, International Electro-Technical Commission (IEC), Internet Security, Lean Six Sigma, Linux Operating System, Maintain Compliance, Microsoft Windows Operating System, Network Security, Patents, Penetration Testing, Policy Implementation, Product Lifecycle, Product Management, Product Programs, Product Support, Public Key Infrastructure (PKI), Publications, Python Programming/Scripting Language, Quality Management, Realtime Operating System, Research & Development (R&D), Risk Analysis, Secure Coding, Security Analysis, Security Architecture, Security Design, Security Monitoring, Security Protocols, Software Administration, Software Development, Software Development Lifecycle (SDLC), Standards Organizations, Strategic Planning, Technical Leadership, Technical Publications, Technical Strategy, Technical Support, Technical Writing, Thought Leadership, Threat Modeling, White Papers, Willing to Travel

LOCATION

Boston, MA

POSTED

30+ days ago

Job Description Summary

We are seeking a seasoned Cyber Security Engineer to lead the development and integration of secure architectures for critical Transmission & Distribution (T&D) systems.

As a recognized technical authority, you will define cybersecurity strategy across hardware, embedded systems, and software-defined platforms in modern electric grids—spanning protection, control, and energy management technologies for Grid Automation business unit.

You will embed Security by Design and Cyber-Informed Engineering (CIE) principles throughout the product lifecycle, operating at the intersection of operational technology (OT) and information technology (IT). Your work will help drive regulatory compliance, product security, and support both R&D teams and utility customers in securing mission-critical infrastructure.

Job Description

Key Responsibilities:

Act as the cybersecurity design authority for T&D products, defining end-to-end architectures across hardware, firmware, and cloud-connected systems, advising on secure protocols, cryptography, authentication, and network hardening.
Translate and implement global regulatory standards (IEC 62443, IEC 61850, IEC 62351, NERC CIP) into product requirements, and lead technical strategy planning, architecture reviews, and security certification efforts.
Guide engineering teams through threat modeling, secure coding, SDLC best practices, and CIE adoption to mitigate cyber-physical risks affecting safety, reliability, or operations.
Define and support embedded and software-based security features using C/C++, Python, and modern toolchains, while collaborating on penetration testing, fuzz testing, code reviews, and security simulations.
Lead cross-functional initiatives with PSL, product management, compliance, field operations, and R&D to align cybersecurity objectives and ensure systems meet resilience and compliance expectations.
Monitor cybersecurity trends, ICS/OT threat landscapes, and emerging technologies, recommending tools and methods to enhance product security posture.
Partner with PSL, incident response and product security teams to support vulnerability remediation, post-incident analysis, and contribute to the creation of security documentation, including architecture specs, procedures, and training materials.
Represent the company in industry forums, standards bodies, and technical panels, and contribute to white papers, patents, and technical publications supporting innovation and thought leadership for Grid Automation.

Required Qualifications:

Bachelor’s degree in engineering, Computer Science, Cybersecurity, or a related field.
Minimum of 8 years of engineering experience, with 5 years focused on cybersecurity for embedded or software-defined systems.

Desired Characteristics:

Professional certifications such as CISSP, GIAC (GPEN/GXPN), CEH, or ISA/IEC 62443 preferred.
Proven ability to secure OT/ICS environments, preferably within the energy or utilities sector.
Deep familiarity with industrial protocols (e.g., IEC 61850, DNP3, Modbus, IEEE 2030.5) and relevant cybersecurity standards.
Experience in embedded system development (C/C++, RTOS), as well as Linux/Windows platforms.
Strong hands-on background in PKI, identity management, network security appliances, and security monitoring.
Proficient in threat modeling, risk/vulnerability assessment, and using forensic/security analysis tools..
Excellent communication and stakeholder engagement skills, able to translate technical content for non-technical audiences.
Exposure to quality improvement methodologies (e.g., Lean, Six Sigma) is a plus.
Recognized as a thought leader through publications, patents, or industry involvement.
Willingness to travel for customer engagements, conferences, and global collaboration.

Additional Information

Relocation Assistance Provided: No

#LI-Remote - This is a remote position

Application Deadline: January 16, 2026

About the Company

GE Vernova

Resume Resources

Free Resume Templates Free Resume Builder