Product Cybersecurity Engineer / Specialist

Product Cybersecurity Engineer / Specialist

Full-Time 60000 - 80000 £ / year (est.) No working from home possible
Agilent Technologies

At a Glance

  • Tasks: Lead cybersecurity efforts for innovative products in regulated markets like aviation and defence.
  • Company: Join Agilent Technologies, a global leader in spectroscopy and vacuum solutions.
  • Benefits: Enjoy competitive pay, private healthcare, and work-life balance in a hybrid role.
  • Other info: Collaborative Agile culture with exciting career growth opportunities.
  • Why this job: Make a real impact on product security while working with cutting-edge technology.
  • Qualifications: 4+ years in product cybersecurity; strong understanding of regulations and secure development.

The predicted salary is between 60000 - 80000 £ per year.

We are seeking an experienced Product Cybersecurity Engineer to lead and support cybersecurity activities across our spectroscopy and vacuum product portfolio. This role is critical to ensuring our products meet evolving global cybersecurity regulations, customer requirements, and industry best practices—particularly in regulated markets such as aviation security, customs & borders, pharmaceuticals, and defence.

Location: Harwell, Oxfordshire (Hybrid)

Company: Agilent Technologies - Spectroscopy & Vacuum Division

Key Responsibilities

  • Cybersecurity Compliance & Regulation
    • Interpret and apply global cybersecurity and privacy regulations (e.g. GDPR, EU Cyber Resilience Act).
    • Aligning approach with Legal and the CISO organisation.
    • Act as product line lead for EU CRA readiness, including product cybersecurity documentation, policy and procedure development, and coordination with product teams and central security functions.
    • Own and track remediation plans to ensure continued product compliance.
    • Maintain and review cybersecurity requirements aligned to target markets (e.g. defence, aviation, customs).
    • Ensure products are GDPR compliant.
  • Sales & Customer Cybersecurity Support
    • Support Sales and Marketing with cybersecurity content for tenders and bids.
    • Contribute to cybersecurity whitepapers and standard documentation.
    • Provide technical input for tender compliance submissions.
    • Participate in customer-facing cybersecurity discussions, where needed.
    • Review customer and regulatory documentation and translate requirements into product development inputs.
    • Stay aligned with industry developments and best practices.
  • Secure Product Development
    • Ensure products meet internal Agilent security policies and procedures and external regulatory and customer requirements.
    • Drive a proactive cybersecurity approach within product development.
    • Conduct or support cybersecurity testing and assessments, identifying vulnerabilities and providing reports.
    • Collaborate with R&D to analyse vulnerabilities, identify false positives and controls, conduct threat modelling, and define, implement and track remediation plans.
    • Provide technical guidance on encryption and key management, patch management, and identity and user management.
    • Contribute to infrastructure security (e.g. certificate and secret management).
    • Support secure product configuration tailored to customer needs.
  • DevSecOps & Security Engineering
    • Drive adoption of DevSecOps practices, including CI/CD security integration and automated vulnerability scanning (e.g. Nessus).
    • Implement and maintain Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA).
    • Lead Software Bill of Materials (SBOM) creation and management in the spectroscopy and vacuum product lines.
    • Perform application security and penetration testing in collaboration with the internal Product Security Program team.
  • Embedded Systems Security
    • Secure Windows 10/11 IoT-based embedded systems, including group policy and registry hardening, attack surface reduction, patch and update management, endpoint protection, and mobile device management.
    • Implement Microsoft security features such as BitLocker, AppLocker, and Unified Write Filter (UWF).
    • Support development and maintenance of embedded OS images.
    • (Desirable) Knowledge of Embedded Linux security.
  • Continuous Improvement & Future-Proofing
    • Monitor emerging threats, vulnerabilities, and regulatory changes.
    • Ensure products remain secure throughout their lifecycle.
    • Promote continuous improvement in cybersecurity practices.
  • Operational Security Activities
    • Manage OS patching and release cycles for product platforms.
    • Maintain secure embedded OS builds (e.g. FFU images).
    • Ensure regular vulnerability scanning (e.g. Nessus) and security testing and validation.
    • Support CI/CD environment hardening and security patching.

Qualifications

  • Essential
    • Bachelor’s or master’s degree or equivalent.
    • Proven experience in product cybersecurity or application security – typically 4+ years relevant experience.
    • Strong understanding of secure software development lifecycle (SSDLC), vulnerability management and remediation, and regulatory compliance (GDPR, EU CRA, emerging EU and global regulations).
    • Hands-on experience with security testing (SAST, DAST, SCA), penetration testing or vulnerability analysis, and threat modelling.
    • Knowledge of Windows OS security (preferably embedded/IoT variants).
    • Experience working with cross-functional engineering teams.
  • Desirable
    • Relevant cybersecurity certifications (e.g. CISSP, CompTIA PenTest, ISC2 CSSLP would be beneficial).
    • Familiarity with DevSecOps tools and CI/CD pipelines.
    • Experience with Nessus or similar scanning tools and Software Bill of Materials (SBOM).
    • Embedded Linux security knowledge.
    • Exposure to regulated industries (defence, aviation, pharma, border security).
    • Experience leveraging modern AI-assisted tools (e.g. Copilot, LLMs) to enhance secure development, documentation, and cybersecurity analysis while applying appropriate engineering judgement and data security controls.

Personal Attributes

  • Strong analytical and problem-solving skills.
  • Ability to translate regulations into actionable engineering requirements.
  • Excellent communication skills, including customer-facing interactions.
  • Proactive, self-driven, and detail-oriented.
  • Comfortable working across multiple stakeholders and geographies.

What We Offer

  • Exciting projects in a multifaceted collaborative team grounded on an Agile Culture and Approach.
  • Career development opportunities in an international company.
  • Competitive compensation and benefits package.
  • Work-Life-Balance programs.
  • Permanent contract in a fast-growing global company.
  • Company pension scheme.
  • Private health care.

Additional Details

  • Full time weekly schedule.
  • Pay ranges are determined by role, level, and location.
  • Individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training.
  • Travel Required: Occasional.
  • Shift: Day.
  • Duration: No End Date.
  • Job Function: R&D.

Agilent Technologies Inc. is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability or any other protected categories under all applicable laws.

Product Cybersecurity Engineer / Specialist employer: Agilent Technologies

Agilent Technologies is an exceptional employer, offering a dynamic work culture that fosters innovation and collaboration. With a focus on employee growth, you will have access to extensive development opportunities while working in a hybrid environment that promotes work-life balance. Join us in a role where your contributions will have a tangible impact on global change initiatives within a leading science company.

Agilent Technologies

Contact Details:

Agilent Technologies Recruitment Team

StudySmarter Expert Advice🤫

We think this is how you could land Product Cybersecurity Engineer / Specialist

Tip Number 1

Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.

Tip Number 2

Prepare for interviews by researching the company and its products. Understand their cybersecurity needs and be ready to discuss how your skills align with their goals. Show them you’re not just another candidate, but someone who truly gets what they do.

Tip Number 3

Practice makes perfect! Do mock interviews with friends or use online platforms to get comfortable with common questions. The more you practice, the more confident you'll feel when it’s time to shine.

Tip Number 4

Don’t forget to apply through our website! We’ve got loads of opportunities waiting for you, and applying directly shows your enthusiasm. Plus, it’s a great way to ensure your application gets seen by the right people.

We think you need these skills to ace Product Cybersecurity Engineer / Specialist

Cybersecurity Compliance
GDPR
EU Cyber Resilience Act
Product Cybersecurity Documentation
Vulnerability Management
Security Testing (SAST, DAST, SCA)
Penetration Testing

Some tips for your application 🫡

Tailor Your CV:Make sure your CV is tailored to the Product Cybersecurity Engineer role. Highlight relevant experience, especially in cybersecurity compliance and secure software development. We want to see how your skills align with our needs!

Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cybersecurity and how your background makes you a great fit for our team. Don’t forget to mention any specific projects or achievements that relate to the job.

Showcase Your Technical Skills:We’re looking for someone with hands-on experience in security testing and vulnerability management. Be sure to include any relevant tools or methodologies you've used, like SAST, DAST, or Nessus, to demonstrate your expertise.

Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, you’ll find all the details you need about the role and our company culture there!

How to prepare for a job interview at Agilent Technologies

Know Your Cybersecurity Regulations

Make sure you brush up on global cybersecurity regulations like GDPR and the EU Cyber Resilience Act. Be ready to discuss how these regulations impact product development and compliance, as this role is all about ensuring products meet these standards.

Showcase Your Technical Skills

Prepare to talk about your hands-on experience with security testing tools like SAST, DAST, and vulnerability analysis. Bring examples of past projects where you identified vulnerabilities and implemented remediation plans, as this will demonstrate your practical knowledge.

Communicate Clearly and Confidently

Since this role involves customer-facing interactions, practice explaining complex cybersecurity concepts in simple terms. Being able to translate technical jargon into actionable insights for non-technical stakeholders will set you apart.

Demonstrate a Proactive Mindset

Be ready to discuss how you've previously driven improvements in cybersecurity practices. Share specific instances where you took the initiative to enhance security measures or adapt to emerging threats, showing that you're not just reactive but proactive in your approach.