Principal Staff Software Engineer-Cybersecurity

• *Company Overview**
• -------------------

At Motorola Solutions, we believe that everything starts with our people. We’re a global close\-knit community, united by the relentless pursuit to help keep people safer everywhere. We build and connect technologies to help protect people, property and places. Our solutions foster the collaboration that’s critical for safer communities, safer schools, safer hospitals, safer businesses, and ultimately, safer nations. Connect with a career that matters, and help us build a safer future.

• *Department Overview**
• ----------------------

At Unified Communications, our vision is to build a safer world \- unified by instant, secure and reliable communications. We build best\-in\-class broadband mission critical voice, video and data communications products. Our portfolio includes evidence platforms as well as Land Mobile Radio interoperability solutions.

• *Job Description**
• ------------------

• *Job Description**
• ------------------

• *At MSI, our security philosophy is building security foundationally in our products and processes. This position is a key global role responsible for the entire portfolio of Unified Communications products. It includes collaborating with engineering teams, partners and customers worldwide. This position reports to the System Owner (Director of Product Management \& Cybersecurity). The role spans 2 pillars of the secure SDLC: building security into the product and assessing it for compliance. :**

• *S\-SDLC compliance** : implementing the NIST Cybersecurity framework with compliance to industry best practices including OWASP, GDPR, CIS, DoD, etc. This is a hands\-on role which involves building product security into the software including secure architecture, secure design, secure coding and secure testing practices. In this role, you will, engage with Product Owners and Engineering Teams to understand the product and processes, implement compliance to NIST 800\-53 family of controls in the product software, perform gap analysis, risk assessments and collaborating with Product Management and Risk Owners to mature and prioritize security and compliance epics on product roadmaps. The role includes maintaining the product security white paper and marketing materials release over release, driving responses to customer security assessments and security requirements in RFI/RFP responses.

• *ISM compliance** : assessing products and processes to frameworks such as ISO 27001, ISO 27701, SOC 2, FedRAMP, CJIS, global ISMs such as CCCS, ITHC, IRAP, CERT\-IN, ANSII, etc. This role is responsible for implementing ISM controls and policies, driving portfolio compliance and representing the organization in internal and external audits. It includes maintaining ISM documentation (policies and procedures) and required evidence repositories, asset registers, risk registers, business continuity plans and participating in site level management reviews.

• *Data Privacy compliance:** collaborating with MSI’s Data Privacy teams for ongoing data privacy assessments and maintaining data privacy artifacts for the portfolio of products every release.

• *The following skills are required for this role:**

• **Experience with Android and iOS Mobile Application Security**
• **Experience with Windows Browser based Application Security**
• **Experience with Linux Server Infrastructure Security**
• **Proven track record of implementing NIST 800\-53 cybersecurity framework controls**
• **Success in leading teams to ISO 27001 and SOC 2 Type 2 compliance**
• **Experience with Azure and AWS Cloud deployments**
• **Experience with Data Center (on\-prem) deployments**

• *Additional Qualified Skills:**

• **CISSP certification**
• **Experience with deploying products in compliance to international ISM frameworks (e.g. CCCS, ITHC, IRAP, ANSII, etc)**
• **Experience with air\-gapped deployments**

• *This position is subject to working in high security areas** **g** **and therefore may requires successfully passing a more stringent fingerprint background check administered by Motorola Solutions Inc. customers.**

• *Basic Requirements**
• ---------------------

• **Bachelors Degree in Engineering: Computer Science, Information Technology, Cybersecurity or related**
• **10\+ years of experience**

• *Basic Requirements**
• ---------------------

• **Experience with Android and iOS Mobile Application Security**
• **Experience with Windows Browser based Application Security**
• **Experience with Linux Server Infrastructure Security**
• **Proven track record of implementing NIST 800\-53 cybersecurity framework controls**
• **Success in leading teams to ISO 27001 and SOC 2 Type 2 compliance**
• **Experience with Azure and AWS Cloud deployments**
• **Experience with Data Center (on\-prem) deployments**

• *Travel Requirements**
• ----------------------

None

• *Relocation Provided**
• ----------------------

None

• *Position Type**
• ----------------

Experienced

• *Referral Payment Plan**
• ------------------------

Yes

• **EEO Statement***

Motorola Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion or belief, sex, sexual orientation, gender identity, national origin, disability, veteran status or any other legally\-protected characteristic.

We are proud of our people\-first and community\-focused culture, empowering every Motorolan to be their most authentic self and to do their best work to deliver on the promise of a safer world. If you’d like to join our team but feel that you don’t quite meet all of the preferred skills, we’d still love to hear why you think you’d be a great addition to our team.