Lead Cyber Security Test Engineer - 10+ Years - Immediate Joiners

What is the job about?

The primary responsibility would be identifying and mitigating security vulnerabilities in embedded systems and firmware across a variety of devices, including IoT devices. You will work closely with cross-functional teams, including software engineers, hardware engineers, and security analysts, to ensure the security and resilience of our products against potential threats.

Specifically, you will work to:

• Manage the deliverables from the Cyber security test team
• Guide the team on technical aspects so that the tools can support all teams seamlessly.
• Bring new innovations and ideas for Cyber security testing
• Ensure cyber security tests (like penetration test, threat mitigation test, known vulnerability scanning, security requirement test) are conducted for all products
• Contribute to the improvement of the Cyber security test maturity of the organization
• Come up with suggestions to improve performance of the digital offerings

Your Background

• Bachelor's degree in Computer Science, Electrical Engineering, Cybersecurity, or a related field.
• The candidate should possess 10-15 years of experience in ethical hacking or information security or product/application cyber security testing.
• Demonstrated success as a test lead, including a minimum of 5 years in people management
• Proven experience in embedded software development, reverse engineering, or penetration testing.
• Strong knowledge of embedded systems architecture, operating systems, and firmware development.
• Proficiency in programming languages such as C, C++, Python, and assembly.
• Relevant certifications such as CEH, OSCP, OSCE, CISSP, or GIAC Embedded Systems Security (GICSP) are preferable
• Experience with tools such as Ghidra, IDA Pro, Binary Ninja, Burp Suite, and Wireshark.
• Knowledge of various embedded communication protocols (e.g., CAN, Modbus, Zigbee, Bluetooth, etc.).
• Familiarity with hardware hacking techniques, including chip-off attacks, glitching, and side-channel analysis.
• Strong understanding of security principles, cryptography, and secure coding practices.
• Experience with source code analysis and understanding of common software vulnerabilities (e.g., buffer overflows, format string vulnerabilities, etc.).
• Excellent analytical, problem-solving, and communication skills.
• Good experience working in an agile setup.