Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our team to ensure product security compliance and navigate global regulations.
- Company: Sonos creates the ultimate listening experience, fostering an inclusive and empowering workplace.
- Benefits: Enjoy a collaborative office environment in Glasgow with opportunities for professional growth.
- Why this job: Make a real impact on product security while working with diverse teams and cutting-edge technology.
- Qualifications: 5+ years in cybersecurity compliance; degree in Computer Science or related field preferred.
- Other info: This role requires on-site presence at least 4 days a week in Glasgow.
The predicted salary is between 48000 - 72000 ÂŁ per year.
Join to apply for the Senior Product Security Engineer role at Sonos, Inc.
3 days ago Be among the first 25 applicants
Join to apply for the Senior Product Security Engineer role at Sonos, Inc.
At Sonos we want to create the ultimate listening experience for our customers and know that it starts by listening to each other. As part of the Sonos team, you’ll collaborate with people of all styles, skill sets, and backgrounds to realize our vision while fostering a community where everyone feels included and empowered to do the best work of their lives.
This role is located on-site at our Glasgow office
This position is office-based, meaning regular in-person collaboration or use of office equipment is essential to maximize effectiveness for this team and/or position. Qualified applicants must live within commuting distance of our Glasgow office location and should expect to be in office a minimum of 4 days per week.
At Sonos, our Product Security Vision is to protect our products by implementing proven security practices and leveraging expertise to create experiences that both delight our customers and safeguard them and their information from cyber threats.
We are seeking an experienced and strategically-minded Senior Product Security Engineer – Regulatory Compliance to join our Product Security team. This is a critical new role central to establishing and maturing our Governance, Risk, and Compliance (GRC) capabilities specifically for our world class products and services.
You will be the internal subject matter expert, working with our legal and product compliance teams to interpret complex global cybersecurity regulations, determine product compliance requirements, and coordinating work across development teams to ensure Sonos products remain secure and saleable worldwide. This role is essential for handling regulatory changes, accelerating market access, and strengthening customer trust in Sonos\’s commitment to security and privacy.
What You’ll Do
As a Senior Product Security Engineer – Regulatory Compliance, you will:
- Contribute to Regulatory Interpretation: Serve as an internal expert and point of contact for our product software on the cross-functional team interpreting new and evolving global IoT cybersecurity and privacy regulations (e.g., EU Cyber Resilience Act (CRA), UK Product Security and Telecommunications Infrastructure (PSTI) Act, EU Radio Equipment Directive (RED) Delegated Act, GDPR, CCPA, U.S. Cyber Trust Mark).
- Coordinate Software Compliance Programs: Translate complex legal and regulatory requirements into clear, actionable internal policies, standards, and guidelines for product software engineering teams.
- Help Embed Compliance-by-Design: Collaborate closely with product managers, engineering leads (Firmware, Cloud, Mobile, Web), and quality assurance to integrate security and compliance checkpoints directly into Sonos\’s Secure Development Lifecycle (SDL), aligning with OWASP SAMM principles.
- Conduct Compliance Risk Assessments: Systematically identify, assess, and prioritize compliance-related risks within product designs, new features, and roadmaps.
- Cross-Functional Collaboration & Influence: Work effectively with diverse stakeholders across Legal, Product Compliance, Product Management, and Engineering. Provide expert guidance and influence decisions to ensure compliance is proactively addressed.
- Manage External Engagements: Coordinate and direct the work of external specialized Cybersecurity Consulting Firms for services such as gap assessments and periodic compliance reviews.
- Drive Training & Awareness: Develop and deliver training programs to internal teams, including our \”security champions\” network, to raise awareness and capability in product security compliance best practices.
- Maintain Regulatory Intelligence: Continuously monitor and roadmap anticipated regulatory changes and their potential impact on Sonos products, contributing to proactive strategy adjustments.
Basic Qualifications
We are looking for a passionate and strategic individual with a proven track record in navigating the complex world of product security compliance.
Education & Certifications:
- Bachelor\’s degree in Computer Science, Information Security, Law, or a related technical field.
- Master\’s degree or relevant industry certifications (e.g., CIPP/E, CISM, CRISC, or specialized IoT/Product Security compliance certifications) are highly preferred.
Experience:
- Minimum of 5 years of progressive experience in cybersecurity compliance, regulatory affairs, or product security, with a strong focus on IoT and/or consumer electronics products.
- Demonstrable experience interpreting complex legal and regulatory texts and translating them into practical, engineering-consumable requirements.
- Proven track record of successfully guiding product development teams through compliance efforts for regulations such as EU CRA, UK PSTI Act, EU RED Delegated Act, GDPR, and CCPA.
- Familiarity with industry security frameworks and standards like ETSI EN 303 645, ISO 27001, and NIST Cybersecurity Framework applied to product development.
Skills:
- Exceptional Communication: Outstanding verbal and written communication skills to articulate complex compliance requirements, risks, and solutions clearly and persuasively to technical and non-technical audiences, from engineers to executives.
- Regulatory Expertise: In-depth, up-to-date knowledge of global privacy and cybersecurity regulations specifically impacting connected consumer devices and their associated software and services.
- Analytical & Problem-Solving: Strong ability to analyze legal texts, conduct risk assessments, identify compliance gaps, and develop pragmatic, actionable solutions.
- Technical Acumen: Solid conceptual understanding of IoT device architecture, cloud services, and software development lifecycles. While deep coding skills are not required for this role, sufficient technical fluency is critical to effectively engage with and guide engineering teams.
- Cross-Functional Collaboration & Influence: Proven ability to build consensus and work effectively across diverse internal teams (Legal, Engineering, Product Management, QA, Privacy) and with external partners.
- Proactive & Strategic Thinking: Ability to anticipate future regulatory trends, understand their potential impact on Sonos products, and proactively develop policies and strategies to address them.
Visa Sponsorship: Sonos is unable to sponsor or take over sponsorship of an employment visa for this role at this time. We ask that applicants be authorized to work for any UK employer, both now and in the future.
Your profile will be reviewed and you\’ll hear from us once we have an update. At Sonos we take the time to hire right and appreciate your patience.
Seniority level
-
Seniority level
Mid-Senior level
Employment type
-
Employment type
Full-time
Job function
-
Job function
Information Technology
-
Industries
Computers and Electronics Manufacturing
Referrals increase your chances of interviewing at Sonos, Inc. by 2x
Sign in to set job alerts for “Senior Product Security Engineer” roles.
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Senior Cyber Security Specialist employer: Sonos, Inc.
Contact Detail:
Sonos, Inc. Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Cyber Security Specialist
✨Tip Number 1
Familiarise yourself with the specific regulations mentioned in the job description, such as the EU Cyber Resilience Act and GDPR. Understanding these laws will not only help you in interviews but also demonstrate your proactive approach to compliance.
✨Tip Number 2
Network with professionals in the cybersecurity compliance field, especially those who have experience with IoT products. Engaging with industry experts can provide insights into best practices and may even lead to referrals.
✨Tip Number 3
Prepare to discuss real-world examples of how you've navigated compliance challenges in previous roles. Being able to articulate your experience in translating complex regulations into actionable policies will set you apart.
✨Tip Number 4
Stay updated on emerging trends in cybersecurity and product compliance. Showing that you are aware of future regulatory changes and their implications for product security can highlight your strategic thinking skills during the interview.
We think you need these skills to ace Senior Cyber Security Specialist
Some tips for your application 🫡
Understand the Role: Before applying, make sure to thoroughly read the job description for the Senior Product Security Engineer role at Sonos. Understand the key responsibilities and qualifications required, as this will help you tailor your application.
Tailor Your CV: Customise your CV to highlight relevant experience in cybersecurity compliance and product security. Emphasise your understanding of regulations like GDPR and your ability to translate complex legal texts into actionable requirements.
Craft a Compelling Cover Letter: Write a cover letter that showcases your passion for product security and your strategic mindset. Mention specific experiences that align with the responsibilities outlined in the job description, particularly your collaborative work with cross-functional teams.
Highlight Communication Skills: Since exceptional communication is crucial for this role, ensure your application reflects your ability to articulate complex compliance requirements clearly. Provide examples of how you've successfully communicated with both technical and non-technical audiences.
How to prepare for a job interview at Sonos, Inc.
✨Understand Regulatory Frameworks
Familiarise yourself with the key global cybersecurity regulations mentioned in the job description, such as the EU Cyber Resilience Act and GDPR. Being able to discuss these frameworks and their implications for product security will demonstrate your expertise and preparedness.
✨Showcase Cross-Functional Collaboration Skills
Prepare examples of how you've successfully worked with diverse teams, including legal, engineering, and product management. Highlighting your ability to influence and guide cross-functional teams will be crucial, as this role requires strong collaboration.
✨Communicate Clearly and Effectively
Practice articulating complex compliance requirements in a clear and concise manner. You may need to explain technical concepts to non-technical stakeholders, so showcasing your communication skills will be essential during the interview.
✨Demonstrate Proactive Thinking
Be ready to discuss how you anticipate regulatory changes and their potential impacts on products. Showing that you can think strategically about compliance and proactively develop policies will set you apart as a candidate.