Product Cybersecurity Engineer Specialist

Cybersecurity
Didcot, GB
June 2, 2026
Full Time
Apply Now

Job Description

Company: Agilent Technologies

Location: Didcot, GB

# GB07 Agilent Technologies LDA UK Limited — Product Cybersecurity Engineer / Specialist

## Product Cybersecurity Engineer / Specialist — Harwell, Oxfordshire (Hybrid)

We are seeking an experienced Product Cybersecurity Engineer to lead and support cybersecurity activities across our spectroscopy and vacuum product portfolio. You will report to the R&D Software Manager and work cross-functionally with R&D, Product Security, Agilent IT, Sales, and Marketing to ensure cybersecurity is embedded throughout the product lifecycle, from design and development through deployment and ongoing support. The role is based at our Harwell, Oxfordshire office with a hybrid model (2–3 days working from home, 2–3 days on-site). There is some expectation to be on-site for hands-on work with our products.

## What the role covers

You will interpret and apply global cybersecurity and privacy regulations such as GDPR and the EU Cyber Resilience Act, aligning approaches with Legal and the CISO organisation. As product line lead for EU CRA readiness you will own product cybersecurity documentation, policy and procedure development, coordination with product teams and central security functions, and track remediation plans to ensure continued product compliance. You will maintain and review cybersecurity requirements aligned to target markets (for example defence, aviation, customs) and ensure products are GDPR compliant.

Sales and customer-facing support is part of the job: you will contribute cybersecurity content for tenders and bids, whitepapers and standard documentation, provide technical input for tender compliance submissions, and participate in customer-facing cybersecurity discussions when needed. You will review customer and regulatory documentation and translate requirements into inputs for product development, staying aligned with industry developments and best practices.

In product development you will help ensure products meet internal Agilent security policies and external regulatory and customer requirements. You will drive a proactive cybersecurity approach, conduct or support cybersecurity testing and assessments, identify vulnerabilities and provide reports, collaborate with R&D to analyse vulnerabilities, identify false positives and controls, conduct threat modelling, and define, implement and track remediation plans.

You will provide technical guidance on encryption and key management, patch management, identity and user management, and contribute to infrastructure security such as certificate and secret management. Supporting secure product configuration tailored to customer needs is expected.

## Engineering, tools and platforms you will work with

– Drive adoption of DevSecOps practices including CI/CD security integration and automated vulnerability scanning (e.g. Nessus).
– Implement and maintain Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA).
– Lead Software Bill of Materials (SBOM) creation and management for the spectroscopy and vacuum product lines.
– Perform application security and penetration testing in collaboration with the internal Product Security Program team.
– Secure Windows 10/11 IoT-based embedded systems: group policy and registry hardening, attack surface reduction (services, ports, etc.), patch and update management, endpoint protection and antivirus, Mobile Device Management (e.g. Intune), and Microsoft security features such as BitLocker, AppLocker, Unified Write Filter (UWF).
– Support development and maintenance of embedded OS images (e.g. FFU images). Knowledge of Embedded Linux security is desirable.

Operational and continuous improvement responsibilities include managing OS patching and release cycles for product platforms, maintaining secure embedded OS builds, ensuring regular vulnerability scanning, security testing and validation, and supporting CI/CD environment hardening and security patching. Monitor emerging threats, vulnerabilities and regulatory changes to keep products secure throughout their lifecycle and promote continuous improvement in cybersecurity practices.

## Qualifications and experience we ask for

– Bachelor’s or master’s degree or equivalent.
– Proven experience in product cybersecurity or application security — typically 4+ years relevant experience.
– Strong understanding of secure software development lifecycle (SSDLC), vulnerability management and remediation, and regulatory compliance (GDPR, EU CRA, emerging EU and global regulations).
– Hands-on experience with security testing (SAST, DAST, SCA), penetration testing or vulnerability analysis, and threat modelling.
– Knowledge of Windows OS security (preferably embedded/IoT variants) and experience working with cross-functional engineering teams.

Desirable items we welcome:

– Relevant cybersecurity certifications (e.g. CISSP, CompTIA PenTest+, (ISC)² CSSLP).
– Familiarity with DevSecOps tools and CI/CD pipelines, experience with Nessus or similar scanning tools, Software Bill of Materials (SBOM) experience, Embedded Linux security knowledge.
– Exposure to regulated industries (defence, aviation, pharma, border security).
– Experience leveraging modern AI-assisted tools (e.g. Copilot, LLMs) to enhance secure development, documentation, and cybersecurity analysis while applying appropriate engineering judgement and data security controls.

Personal attributes we value include strong analytical and problem-solving skills, the ability to translate regulations into actionable engineering requirements, excellent communication skills including customer-facing interactions, proactive self-drive, attention to detail, and comfort working across multiple stakeholders and geographies.

## Terms and benefits

This is a permanent, full-time role with occasional travel required. Shift: Day. Duration: No End Date. We offer exciting projects within an agile culture, career development opportunities in an international company, a competitive compensation and benefits package, work-life balance programs, a company pension scheme and private health care. Our pay ranges are determined by role, level and location; during the hiring process a recruiter can share more about the specific pay range for a preferred location. Pay and benefit information by country is available at: https://careers.agilent.com/locations

Agilent inspires and supports discoveries that advance the quality of life. We are an equal opportunity employer and encourage applications from all qualified candidates.

Source: Bandana.com

More Cybersecurity Jobs

View all Cybersecurity jobs →

Related Jobs