Key skills
CloudCyber SecurityCI/CDProject ManagementCommunicationPenetration Testing
About this role
Role Overview
- Individual Contributor with Product Security Assurance Team.
- Provide mentorship, expertise and direction to junior team members.
- Deliver Security Testing across all of Industrial Automation.
- Assist in the development of modular, repeatable, effective Security Testing processes.
- Partner with Tools and Technology Team to select, implement, develop, and automate testing with appropriate tools.
- Work with cross functional teams to develop remediation suggestions.
- Report observations using our standardized reporting structure.
- The engineer may frequently lift and/or move up to 25 pounds.
Requirements
- Bachelor’s degree in computer science or software engineering, electrical engineering or equivalent experience.
- 7+ years demonstrated experience in penetration testing or 5+ years demonstrated experience in penetration testing and 2+ years of application development.
- Experience in pentesting – Web, Mobile App, Thick Client, API, Web services, Hardware, Cloud, Containers.
- Exposure to ICS pentesting.
- Understanding of application protocols, development, and common attack vectors.
- Good cybersecurity capabilities and strong software engineering skills.
- Excellent understanding of security by design principles and architecture level security concepts.
- Ability to script advanced attacks.
- Ability to fuzz applications and protocols for new vulnerabilities and able to fully exploit newly discovered vulnerabilities.
- Ability to discover advanced logic flaws and multiple step architectural errors.
- Experience and knowledge of penetration testing methodologies and tools.
- Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities.
- Demonstrated project management skills.
- Effective oral and written communication skills.
- Good interpersonal skills.
- Experience in security testing within the appropriate domain.
- Relevant Security certifications (Eg: CEH, OSCP, OSWE, etc.)
- Public speaking at Technical Conferences.
- Familiarity with reverse engineering tools, debuggers, and dynamic analysis techniques.
- Experience in integrating pentest tools to CI/CD pipeline.
Tech Stack
- Cloud
- Cyber Security
Benefits
- Health insurance
- 401(k)
- Paid time off
- Professional development opportunities
- Flexible working hours