Product Security Leader (REMOTE)

Dover is a diversified global manufacturer with annual revenue of $8 billion. We deliver innovative equipment and components, specialty systems, consumable supplies, software and digital solutions, and support services through five operating segments: Engineered Products, Clean Energy & Fueling, Imaging & Identification, Pumps & Process Solutions and Climate & Sustainable Technologies. Dover combines global scale with operational agility to lead the markets we serve. We are recognized for our entrepreneurial approach for 70 years, our team of approximately 24,000 employees has an ownership mindset, collaborating with customers to redefine what's possible.

Headquartered in Downers Grove, Illinois, Dover trades on the New York Stock Exchange under "DOV." Additional information is available atdovercorporation.com.

The Role: The Product Security Leader is responsible for the implementation and execution of product security programs and practices to support one or more business units at Dover Corp. This position works across IoT, software, and cloud development teams to identify component and system level security risks, evaluate critical failure points, define appropriate technical controls, and partner with cross functional teams to implement security features aligned to product roadmaps.

This role will be based at our Downers Grove, IL location or remote.

Essential Duties/Principal Responsibilities include, but are not limited to:

* Define, implement, and maintain the product security strategy for multiple business unit product portfolios covering IoT and smart device suites.
* Review and evolve the application and infrastructure security architecture, including security principles, patterns, and minimum standards used across product teams.
* Partner with DevOps, systems, and product engineering teams to guide product level security design decisions, ensuring new solutions, products, and modules align with approved security patterns and organizational risk tolerance.
* Conduct full lifecycle security design and architecture assessments for a wide range of products, including embedded devices, enterprise software solutions, cloud applications, and mobile apps.
* Serve as the security authority for product design reviews, identifying architectural risks, defining required mitigations or compensating controls, and supporting security-related release decisions.
* Champion the Secure SDLC, including security requirements, threat modeling, security testing, penetration testing, vulnerability remediation, and release readiness across all business unit products.
* Own product security risk management, including documenting and tracking identified risks, managing security exceptions, and validating remediation of high risk findings.
* Implement or manage the implementation of common application security controls and reusable security mechanisms across product portfolios.
* Assess and manage software supply chain security risks, including third party components, open source dependencies, and product vulnerability exposure.
* Partner with incident response and PSIRT functions to support product security incidents, coordinated vulnerability disclosure, and customer remediation activities.
* Support commercial and customer facing teams by building customer trust in the security of Dover products through security reviews, technical discussions, and responses to customer security inquiries.
* Provide expert level operational support for customer security escalations, including root cause analysis and mitigation planning.
* Provide guidance and technical leadership on secure software and firmware development best practices, helping drive consistent security maturity across development teams.

Minimum Qualifications: Education, Experience, Skills, Abilities, License/Certification:

* BS in a technical discipline with 5-7+ years of experience
* Demonstrated expertise in product/application security architecture, Network security, application security, web services
* Experience with SAST, DAST, SCA and penetration testing tools
* In-depth experience identifying and protecting against web application and web service security vulnerabilities including those found in the OWASP Top 10, IoT Top 10, and CWE Top 25
* Experience in leading development teams and working with Agile methodologies
* Knowledge of secure infrastructure architectures, application architectures, encryption, Cloud Security, and broader security technologies.
* Ability to navigate complex organizational environments and drive change

Preferred Qualifications

* Relevant cyber security certifications:
* ISSAP / ISSMP / CSSLP / CISSP
* Graduate degree in technical discipline
* Experience in software development
* Experience with cloud IaaS security operations

Our ideal candidate would have started as a PRODUCT software developer in Cloud or IoT development, experience working with product management, customers and business leadership. They would have then developed a specialization in security, ideally in security architecture.

Travel: Up to 20%

Work Arrangement: Remote
Pay Range: $150,000.00 - $175,000.00 annually

This position is eligible to earn a discretionary bonus based on performance metrics and other criteria outlined in our applicable bonus plan.

We consider several job-related, non-discriminatory factors when determining the pay rate for a position, including, but not limited to, the position's responsibilities, a candidate's work experience, a candidate's education/training, the position's location, and the key skills needed for the position. Pay is one of the Total Rewards that we provide to compensate and recognize employees for their work.

Benefits for this position include a 401(k) savings plan with employer contributions; medical, dental and vision insurance; wellness programs; health savings account, health care and dependent care flexible spending accounts; company paid short-term disability and long-term disability; company paid employee basic life and AD&D insurance; supplemental employee and dependent life insurance; optional accident, hospital indemnity and critical illness insurance; adoption, surrogacy, and fertility benefits and assistance; commuter benefits; parental, military, jury duty, and bereavement leaves of absence; paid time off, including 9 paid holidays per calendar year, paid vacation days beginning at 120 hours annually, 40 paid sick leave hours annually or as provided under state and local paid sick leave laws; wellness reimbursement, tuition assistance; business travel services; employee discounts; and an employee assistance program that includes company paid counseling sessions and legal services. Eligibility for benefits is governed by applicable plan documents and policies.

All qualified applicants will receive consideration for employment without discrimination based on race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, age, genetic information, or any other factors prohibited by law.

Job Function: