Emerson

Lead Product Security Engineer

Emerson

full-time

Posted on:

Origin:  • 🇮🇳 India

Visit company website
AI Apply
Manual Apply

Job Level

Senior

Tech Stack

CloudCyber SecurityIoTJavaMicroservices.NETPerlPython

About the role

  • Review and govern the overall security architecture of the products.
  • Review Penetration test deliverable and mentor penetration test engineers to ensure quality deliverables.
  • Perform Security risk assessments / Penetration test for new products (Web Applications, Thick Client, IIoT Solutions, Cloud Solutions and Containers).
  • Research latest security best practices when it comes to Applications /device/instrument/IoT, staying current on new vulnerabilities and threats.
  • Define, update, and deliver software security patterns for consumption by software engineers.
  • Participate in Scrum meetings to be the “security voice of reason”.
  • Coordinate with BU Security Leads for penetration test engagements.
  • Determine new test scenarios based on technological advancements and applicable industrial standards/regulations.
  • Work as functional leader to support ISO17025 test process and associated lab accreditation.

Requirements

  • Experience working with Vulnerability Analysis and Penetration testing of Container/ Microservices, IIoT / Cloud Solutions preferably for ICS domain.
  • Experience working with Vulnerability Analysis and Penetration testing of Web Application, Web Services, Thick Client Applications preferably for ICS domain.
  • Strong hands on experience in Vulnerability Research and Reverse Engineering.
  • Experience with static and dynamic security analysis tools.
  • Strong analytical skills and decision-making capabilities.
  • Proven verbal and written communications skills along with great learning agility.
  • Understanding of crypto standards and Cloud Architecture. (Secondary)
  • Design Threat Modelling experience would be an added advantage. (Secondary)
  • Strong hands on experience in secure C/C++ / JAVA / .NET code Review. (Secondary)
  • Hands on experience of scripting language (Perl, Python, Shell etc.) to develop payloads. (Secondary)
  • Understanding IEC62443 standard. (Secondary)