R&D Senior Engineer

At ABB, we help industries run leaner and cleaner-and every person here makes that happen. You'll be empowered to lead, supported to grow, and proud of the impact we create together. Join us and help run what runs the world.

This Position reports to:

What we believe in

ABB's Process Automation business area enables customers to operate some of the world's largest and most complex industrial infrastructures, helping them outrun - leaner and cleaner.
We offer a broad range of automation, electrification and digital solutions for process, hybrid and maritime industries, including industry-specific integrated control and software as well as measurement and analytics solutions and services.

Your role and responsibilities

The Cyber Security Advisor/Expert is responsible for establishing, maintaining, and continuously enhancing ABB's Cybersecurity governance framework within the R&D Lab, with a particular focus on protecting intellectual property, critical infrastructure, and product security. This role serves as a strategic individual contributor with deep technical expertise in industrial cybersecurity standards (IEC 62443), regulatory compliance (Cyber Resilience Act, NIS2 Directive), threat landscape analysis, and secure product development lifecycle (SDLC). The incumbent will work closely with the R&D Team and the Corporate Cyber Security Organization to integrate security-by-design principles into product development, ensuring compliance with international standards and alignment with ABB's core values of safety, integrity, and operational excellence.

The work model for the role is: Hybrid

This role is contributing to the Process Control Platform (PCP) / Operations R&D division in India. Main stakeholders are Product Management, UX/UI teams, QA, DevOps, System Engineers, and global R&D teams.

You will be mainly accountable for:

• Cybersecurity Governance & Compliance: Established and managed end-to-end cybersecurity governance frameworks aligned with IEC 62443, ISO 27001, and global regulations (CRA, NIS2), including policy development, gap analysis, audit readiness, and regulatory compliance management.
• ICS Security & Risk Management: Led security architecture and implementation for industrial control systems and connected products, including cyber risk assessments, threat modeling, security design reviews, and definition of product security levels.
• Secure Development & DevSecOps: Integrated Secure Software Development Lifecycle (S-SDLC) practices into Agile/V-model environments, driving secure coding, security testing (SAST, DAST, penetration testing), and security checkpoints across the product lifecycle.
• Vulnerability Management & Threat Intelligence: Directed vulnerability management, threat intelligence analysis (CVE, CWE, CVSS), incident response, and remediation strategies, including third-party risk assessments and security advisory coordination.
• Audit, Training & Stakeholder Collaboration: Led internal/external audits, compliance verification, and CAPA processes while driving cybersecurity awareness, training programs, and cross-functional collaboration with R&D, product teams, corporate security, and external stakeholders.

Qualifications for the role:

• IEC 62443 & Secure Integration: Embedded IEC 62443 security requirements (SR1-SR7) into Agile/V-model environments, leveraging expertise in industrial control systems (ICS/OT) and secure architecture to ensure strong security maturity without impacting time-to-market.
• Threat Landscape & Risk Management: Conducted cyber threat and risk assessments using STRIDE, PASTA, CVSS, and CWE frameworks, proactively addressing evolving threats, zero-day vulnerabilities, and attack vectors across industrial and IoT systems.
• Regulatory Compliance Expertise: Ensured compliance with global cybersecurity frameworks (Cyber Resilience Act, NIS2, IEC 62443, ISO 27001, NIST), managing audits, regulatory engagements, and maintaining audit-ready documentation across regions.
• Secure SDLC & DevSecOps: Led adoption of Secure Software Development Lifecycle (S-SDLC) practices, including secure coding, code reviews, SAST/DAST, penetration testing, and DevSecOps integration within CI/CD pipelines.
• Third-Party & Supply Chain Security: Managed cybersecurity risks from third-party components, open-source libraries, and external dependencies, ensuring secure integration and compliance with supply chain security standards.
• Vulnerability Management & Incident Response: Directed vulnerability lifecycle management using tools such as Nessus, Qualys, and Fortify, including CVSS-based prioritization, incident response, root cause analysis, and coordinated disclosure.
• Security Leadership, Qualifications & Collaboration: Brought 5+ years of cybersecurity experience supported by a Bachelor's degree in Cybersecurity/Computer Science/Electrical Engineering (Master's preferred, or equivalent experience), along with industry certifications (CISSP, CISM, CEH, GIAC). Drove security culture, stakeholder collaboration, training initiatives, and alignment with enterprise-wide cybersecurity governance.

More about us

This role is part of the R&D Lab and focuses on ensuring cybersecurity excellence in industrial product development. You will play a key role in safeguarding next-generation industrial systems by embedding security into the core of product innovation.

You will contribute to building secure, compliant, and resilient solutions that align with organizational values of safety, integrity, and operational excellence.

Building a cleaner, smarter future takes all kinds of minds: the curious, the courageous, and the creative. We welcome people from all backgrounds and experiences.

Ready to make an impact Apply today or visit www.abb.com to learn more about the impact of our solutions across the globe.

Recruitment Fraud Warning

ABB never asks for payment from job applicants. All genuine job offers follow a formal application and interview process.

View current job openings and apply at:

For more information, read our full fraud warning notice at: