Product Penetration Tester

ERM Placement Services

3 - 7 years

0 - 2 Lacs

ahmedabad

Posted:1 day ago| Platform:

Apply

Skills Required

embedded testing penetration testing rf embedded hardware python can protocol

Work Mode

Work from Office

Job Type

Full Time

Job Description

The Product Penetration Tester will be responsible for conducting advanced security assessments across embedded platforms and wireless communication interfaces. The role includes direct client engagement for reporting, and remediation guidance. Focus areas includes automotive, consumer electronics, medical devices, and industrial IoT.

Key Responsibilities

Conduct penetration testing of embedded systems using UART, SPI, I2C, JTAG, and other hardware interfaces
Reverse-engineer firmware binaries and assess bootloaders, proprietary OS images, and communication stacks
Analyze vulnerabilities in Wi-Fi, Bluetooth Classic/LE, RF, NFC, CAN bus, and other wireless protocols
Collaborate directly with clients to communicate findings, and guide remediation
Execute attack simulations across diverse environments: ECU modules, infotainment systems, connected medical devices, smart home platforms
Build and use custom tools/scripts for signal analysis, fuzzing, and protocol exploration
Develop comprehensive technical documentation with severity ratings, impact assessments, and mitigation strategies
Support clients with secure design reviews, regulatory alignment, and audit preparation

Required Qualifications

3-7 years of hands-on experience in hardware and embedded penetration testing
Expertise with tools such as Logic analyzers (Saleae), SDR platforms (HackRF, BladeRF), Bus Pirate, ChipWhisperer, Ghidra, and IDA Pro
In-depth knowledge of embedded reverse engineering, firmware extraction, and secure boot evaluation
Familiarity with RF and CAN protocols, debugging methods, and signal analysis techniques
Experience communicating complex security findings to diverse technical and business audiences
Background in Python, Bash, or C programming , will be an added advantage
Understanding of industry standards and regulatory frameworks (e.g., ISO/SAE 21434, UNECE WP.29, FDA cybersecurity guidelines, IEC 62443)
Strong analytical thinking and presentation capabilities for both technical and executive-level stakeholders
Experience with teardown inspection, chip-level analysis, and cryptographic module validation

More Jobs at ERM Placement Services

Oracle Technical Consultant

Kolkata, Delhi / NCR, Mumbai (All Areas)

5 - 10 yrs

INR 10 - 20 Lacs

Azure Data Engineer

Noida, Bengaluru

5 - 10 yrs

INR 15 - 30 Lacs

Dot Net Fullstack Developer

Kolkata

3 - 6 yrs

INR 0 - 3 Lacs

Application Security Risk Review Manager

Kolkata

8 - 12 yrs

INR 15 - 27 Lacs

Sr Accounts Manager

Kolkata

9 - 14 yrs

INR 12 - 18 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Python Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.