<ul>
<li>Perform hardware and firmware security testing, including Hardware VAPT, TARA analysis, and penetration testing for embedded and IoT products</li>
</ul>

<ul>
<li>Conduct reverse engineering of firmware, binaries, and hardware components to identify vulnerabilities and weaknesses</li>
</ul>

<ul>
<li>Execute fuzzing tests (black-box, white-box, and grey-box) on device protocols, firmware, and communication interfaces</li>
</ul>

<ul>
<li>Perform vulnerability assessments using tools such as Nessus, OpenVAS, Nmap, and Wireshark</li>
</ul>

<ul>
<li>Develop and maintain test plans, test cases, and security checklists aligned with IEC 62443-4 and secure development lifecycle principles</li>
</ul>

<ul>
<li>Document findings, prepare detailed test reports, and collaborate closely with development teams to validate and resolve vulnerabilities</li>
</ul>

<ul>
<li>Support test automation within CI/CD environments to streamline security testing workflows</li>
</ul>

The Successful Applicant

<ul>
<li>Bachelor's degree in Engineering, Computer Science, Cyber Security, or a related technical field.</li>
</ul>

<ul>
<li>Minimum of two years of experience in device or embedded security testing, preferably within the Industrial Automation or Automotive sectors</li>
</ul>

<ul>
<li>Hands-on expertise in hardware penetration testing, firmware analysis, reverse engineering, and fuzzing methodologies</li>
</ul>

<ul>
<li>Experience in Hardware and Thick Client pentesting methodologies</li>
</ul>

<ul>
<li>Strong understanding of embedded systems, Linux environments, and communication protocols (industrial and automotive)</li>
</ul>

<ul>
<li>Knowledge of Secure Development Lifecycle and familiarity with IEC 62443-4 or equivalent standards</li>
</ul>

<ul>
<li>Proficiency with tools such as Nessus, OpenVAS, Nmap, Wireshark, Burp Suite, Ghidra, IDA Pro, and other security testing utilities</li>
</ul>

<ul>
<li>Programming experience in C/C++, Python, or Shell scripting, with exposure to CI/CD tools and automation frameworks</li>
</ul>

<ul>
<li>Excellent written and spoken English communication skills</li>
</ul>

<ul>
<li>Proficient in using security testing tools and frameworks for embedded systems, firmware, and network protocols</li>
</ul>

<ul>
<li>Analytical, detail-oriented, collaborative, and proactive in identifying and addressing vulnerabilities</li>
</ul>

<ul>
<li>OSCP, CRTP, CRTO, eWPTX, CPENT, LPT, PNPT, or equivalent industry-recognized credentials</li>
</ul>

What's on Offer

<ul>
<li>Competitive salary</li>
</ul>

<ul>
<li>Opportunities to work with a large organization in the INDUSTRIAL AUTOMATION industry.</li>
</ul>

<ul>
<li>Engaging work environment in Bangalore.</li>
</ul>

<ul>
<li>Professional growth and learning opportunities within the industrial/manufacturing sector.</li>
</ul>

Security Engineer

India

Perform hardware and firmware security testing, including Hardware VAPT, TARA analysis, and penetration testing for embedded and IoT products Conduct reverse engineering of firmware, binaries, and hardware components to identify vulnerabilities and weaknesses Execute fuzzing tests (black-box, white-box, and grey-box) on device protocols, firmware, and communication interfaces Perform vulnerability assessments using tools such as Nessus, OpenVAS, Nmap, and Wireshark Develop and maintain test plans, test cases, and security checklists aligned with IEC 62443-4 and secure development lifecycle principles Document findings, prepare detailed test reports, and collaborate closely with development teams to validate and resolve vulnerabilities Support test automation within CI/CD environments to streamline security testing workflows The Successful Applicant Bachelor's degree in Engineering, Computer Science, Cyber Security, or a related technical field. Minimum of two years of experience in device or embedded security testing, preferably within the Industrial Automation or Automotive sectors Hands-on expertise in hardware penetration testing, firmware analysis, reverse engineering, and fuzzing methodologies Experience in Hardware and Thick Client pentesting methodologies Strong understanding of embedded systems, Linux environments, and communication protocols (industrial and automotive) Knowledge of Secure Development Lifecycle and familiarity with IEC 62443-4 or equivalent standards Proficiency with tools such as Nessus, OpenVAS, Nmap, Wireshark, Burp Suite, Ghidra, IDA Pro, and other security testing utilities Programming experience in C/C++, Python, or Shell scripting, with exposure to CI/CD tools and automation frameworks Excellent written and spoken English communication skills Proficient in using security testing tools and frameworks for embedded systems, firmware, and network protocols Analytical, detail-oriented, collaborative, and proactive in identifying and addressing vulnerabilities OSCP, CRTP, CRTO, eWPTX, CPENT, LPT, PNPT, or equivalent industry-recognized credentials What's on Offer Competitive salary Opportunities to work with a large organization in the INDUSTRIAL AUTOMATION industry. Engaging work environment in Bangalore. Professional growth and learning opportunities within the industrial/manufacturing sector.

Security Engineer · Mumbai

Job highlights

Skillset required

Job Description

Job Description for Security Engineer

More at MICHAELPAGE