Cybersecurity & Data Protection Advisor (Junior Level)

Job title - Cybersecurity & Data Protection Advisor (Junior Level)

Job Location Type - Hybrid

Location Hybrid Foxboro or Andover, MA (2 3 days onsite)

Job type 6 months

Shift Schedule Monday Friday | 8 AM 5 PM EST

Number of Openings - 1

Job Description:

About the Role

We are seeking a Cybersecurity & Data Protection Advisor to support a major cybersecurity initiative. This is an excellent opportunity for a junior-level (2 3 years) cybersecurity professional.

Key Responsibilities

• Lead cybersecurity and privacy reviews throughout the product certification lifecycle.
• Define and implement IT/OT security and data protection requirements in collaboration with project teams.
• Conduct risk assessments, threat modeling, and review penetration test findings.
• Support Secure Development Lifecycle (SDL v2) activities including vendor assessments and security reviews.
• Deploy and manage SAST/DAST tools; generate required SDL documentation and artifacts.
• Prepare and execute pre-penetration test activities for products.
• Serve as a cybersecurity SME, guiding teams on secure design and best practices.
• Ensure alignment with SDL standards, risk-driven security practices, and compliance requirements.
• Collaborate with cross-functional teams on secure architecture for cloud, APIs, IoT, and connected systems.
• Support incident response preparedness and security validation efforts.
• Maintain documentation of controls, processes, and compliance evidence.
• Communicate proactively with stakeholders to maintain a strong security posture.

Qualifications

• Bachelor's degree in Computer Science, Information Security, or equivalent experience.
• 2 3+ years of experience in cybersecurity roles (R&D environment experience is a plus).
• Strong knowledge of IEC 62443 standards; ISA-IEC62443 Cybersecurity Expert certification required.
• Additional certifications such as CSSLP or CISSP are a plus.

Core Competencies

• Strong understanding of security management, risk analysis, and remediation.
• Experience with ICS/OT environments, cloud security, and secure architecture.
• Knowledge of security risks across web, mobile, cloud apps, and web services.
• Ability to design secure environments including APIs, IoT, authentication, encryption, and PKI.
• Understanding of Privacy-by-Design principles.
• Proficient in vulnerability management processes, metrics, and tooling.
• Familiarity with DevSecOps, OWASP standards, and threat modeling.
• Hands-on experience with tools such as:
  • Coverity, SonarQube, Black Duck
  • jFrog, Jira, Confluence
• Strong communication and the ability to influence and collaborate across distributed teams.
• Proven ability to manage multiple projects and work independently.
• Fluency in English; Spanish or French is a plus.

Prescreening questions: Do you have 2 3+ years of experience in cybersecurity roles?