Advanced Cyber Security Architect/Engineer
Role details
Job location
Tech stack
Job description
This role is similar to Sr Advanced Cyber Security Architect/Engineer reports to the Product Security Assurance Leader and will be responsible for assessing and evaluating the security posture of a variety of Embedded and IOT Products and partner technologies. This role will be responsible for security services delivery, which may include use of application/network/firmware/hardware security toolsets, detection of security defects, and remediation consultation of those weaknesses., * Individual Contributor with Product Security Assurance Team.
- Provide mentorship, expertise and direction to junior team members.
- Deliver Security Testing across all of Industrial Automation.
- Assist in the development of modular, repeatable, effective Security Testing processes.
- Partner with Tools and Technology Team to select, implement, develop, and automate testing with appropriate tools.
- Work with cross functional teams to develop remediation suggestions.
- Report observations using our standardized reporting structure.
- The engineer may frequently lift and/or move up to 25 pounds.
Requirements
- Bachelor s degree in computer science or software engineering, electrical engineering or equivalent experience.
- 8+ years demonstrated experience in Cybersecurity with 5+ years in penetration testing
Mandatory Skills: Hardware Pen Testing, Firmware Pen Testing, RF WiFi and Bluetooth Pen Testing, Secured Development Life Cycle Processes, Threat Modeling, SCA, SAST, DAST, Binary Analysis.
WE VALUE
- Experience in Industrial Control Systems pentesting (Hardware and Firmware).
- Exposure in pentesting Web, Mobile App, Thick Client, API, Web services, Hardware, Cloud, Containers.
- Understanding of application protocols, development, and common attack vectors. .
- Good cybersecurity capabilities and strong software engineering skills.
- Excellent understanding of security by design principles and architecture level security concepts.
- Ability to script advanced attacks.
- Ability to fuzz applications and protocols for new vulnerabilities and able to fully exploit newly discovered vulnerabilities.
- Ability to discover advanced logic flaws and multi-step architectural errors.
- Experience and knowledge of penetration testing methodologies and tools.
- Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities.
- Effective oral and written communication skills.
- Good interpersonal skills.
- Experience in security testing within the appropriate domain
- Relevant Security certifications (Eg: CEH, OSCP, OSWE, etc.,)
- Familiarity with reverse engineering tools, debuggers, and dynamic analysis techniques.
- Experience in integrating pentest tools into CI/CD pipeline.
Education:
Bachelor s degree in computer science or software engineering, electrical engineering or equivalent experience.