Otis Elevator Co.
Sr Lead Engineer, Product Cyber Security
Full details on LinkedIn
The complete job description, requirements, and application details are available on the original posting.
About Otis Elevator Co.
Otis Worldwide Corporation, known as Otis Elevator Company, is the largest manufacturer of vertical transportation systems in the world. Based in Farmington, Connecticut, the company was founded in 1853 by Elisha Otis, who invented the safety elevator. This innovation significantly improved building safety and allowed for the construction of taller structures. Otis specializes in elevators, escalators, and moving walkways, offering a range of products including safety elevators, high-speed options, and energy-efficient models like the Gen2 Switch™. The company also provides design, installation, modernization, and maintenance services, focusing on safety and reliability for various building types, including commercial, residential, and public spaces. With a rich history of innovation, Otis has installed its systems in iconic landmarks such as the Eiffel Tower, Empire State Building, and Burj Khalifa. Today, Otis transports approximately two billion passengers daily through its extensive global network.
Security at Otis Elevator Co.
Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.
Security Philosophy
“Otis maintains a formal commitment to the security of its products and technology, guided by a multi-year implementation plan. The philosophy centers on a 'Product Security Program' specifically designed to protect products deployed at customer sites. - **Stated AppSec Mission:** "Otis is committed to the cyber security of our products, services, and technology."– Otis Cyber Security (https://www.otis.com/en/us/cyber-security), - **Risk Philosophy:** "Created a Cyber Strategy and 3 Year Implementation Plan"– Mario Memmo LinkedIn (https://www.linkedin.com/in/mario-memmo), - **Stated Goals:** "Product Security Program that focuses on protecting products deployed at customers sites"– Mario Memmo LinkedIn (https://www.linkedin.com/in/mario-memmo), - **Developer Enablement:** Information not publicly available.”
Security Team
The security team is led by a Global CISO and includes dedicated officers for product cybersecurity. - **Org Structure:** "Responsible for the planning, building and operations of a Global Cyber Security Program."– Mario Memmo LinkedIn (https://www.linkedin.com/in/mario-memmo), - **Key Leaders:** 1. **Mario Memmo**, SVP & CISO: "Deployed the Security Operations Center with 24/7 analysts"– 2. **Vijay Lakamraju**, Product Security Officer: "Defined and spearheaded the execution of the product cyber strategy"– 3. **Aldi Caushi**, Director of Product Cybersecurity: "Director of Product Cybersecurity"– - **Team Size:** Information not publicly available. - **Job Postings:** Information not publicly available via current search.
Key Initiatives
Otis has established a formal intake process for product vulnerabilities and a strategic 'Product Security Program'. - **Vulnerability Management (Intake):** "If you believe you have found a security vulnerability ... send an email to productsecurity@otis.com"– Otis Cyber Security (https://www.otis.com/en/us/cyber-security), - **Response SLA:** "You should receive a confirmation of our receipt of your email or similar response within 48 hours."– Otis Cyber Security (https://www.otis.com/en/us/cyber-security), - **Security Champions / Shift Left:** No Evidence Found. - **Secure SDLC Artifacts:** Information not publicly available.
Preparing for an AppSec interview?
Get the weekly briefing 2,000+ security pros trust.