Product Security Testing

Competetive salary PF & Gratuity includedMedical coverage includedAbout Our ClientThe hiring organisation is a reputable and well-established entity within the mechanical industry. As a part of a large organization, the company focuses on delivering innovative and high-quality solutions to its customers.Job Description.Your Responsibilities1.Perform hardware and firmware security testing, including Hardware VAPT, TARA analysis, and penetration testing for embedded and IoT products2.Conduct reverse engineering of firmware, binaries, and hardware components to identify vulnerabilities and weaknesses3.Execute fuzzing tests (black-box, white-box, and grey-box) on device protocols, firmware, and communication interfaces4.Perform vulnerability assessments using tools such as Nessus, OpenVAS, Nmap, and Wireshark5.Develop and maintain test plans, test cases, and security checklists aligned with IEC 62443-4 and secure development lifecycle principles6.Document findings, prepare detailed test reports, and collaborate closely with development teams to validate and resolve vulnerabilities7.Support test automation within CI/CD environments to streamline security testing workflowsOur Requirements1.Bachelor's degree in Engineering, Computer Science, Cyber Security, or a related technical field2.Minimum of two years of experience in device or embedded security testing, preferably within the Industrial Automation or Automotive sectors3.Hands-on expertise in hardware penetration testing, firmware analysis, reverse engineering, and fuzzing methodologies4.Experience in Hardware and Thick Client pentesting methodologies5.Strong understanding of embedded systems, Linux environments, and communication protocols (industrial and automotive)6.Knowledge of Secure Development Lifecycle and familiarity with IEC 62443-4 or equivalent standards7.Proficiency with tools such as Nessus, OpenVAS, Nmap, Wireshark, Burp Suite, Ghidra, IDA Pro, and other security testing utilities8.Programming experience in C/C++, Python, or Shell scripting, with exposure to CI/CD tools and automation frameworks9.Excellent written and spoken English communication skills10.Proficient in using security testing tools and frameworks for embedded systems, firmware, and network protocols11.Analytical, detail-oriented, collaborative, and proactive in identifying and addressing vulnerabilities12.OSCP, CRTP, CRTO, eWPTX, CPENT, LPT, PNPT, or equivalent industry-recognized credentialsThe Successful ApplicantYour Responsibilities1.Perform hardware and firmware security testing, including Hardware VAPT, TARA analysis, and penetration testing for embedded and IoT products2.Conduct reverse engineering of firmware, binaries, and hardware components to identify vulnerabilities and weaknesses3.Execute fuzzing tests (black-box, white-box, and grey-box) on device protocols, firmware, and communication interfaces4.Perform vulnerability assessments using tools such as Nessus, OpenVAS, Nmap, and Wireshark5.Develop and maintain test plans, test cases, and security checklists aligned with IEC 62443-4 and secure development lifecycle principles6.Document findings, prepare detailed test reports, and collaborate closely with development teams to validate and resolve vulnerabilities7.Support test automation within CI/CD environments to streamline security testing workflowsOur Requirements1.Bachelor's degree in Engineering, Computer Science, Cyber Security, or a related technical field2.Minimum of two years of experience in device or embedded security testing, preferably within the Industrial Automation or Automotive sectors3.Hands-on expertise in hardware penetration testing, firmware analysis, reverse engineering, and fuzzing methodologies4.Experience in Hardware and Thick Client pentesting methodologies5.Strong understanding of embedded systems, Linux environments, and communication protocols (industrial and automotive)6.Knowledge of Secure Development Lifecycle and familiarity with IEC 62443-4 or equivalent standards7.Proficiency with tools such as Nessus, OpenVAS, Nmap, Wireshark, Burp Suite, Ghidra, IDA Pro, and other security testing utilities8.Programming experience in C/C++, Python, or Shell scripting, with exposure to CI/CD tools and automation frameworks9.Excellent written and spoken English communication skills10.Proficient in using security testing tools and frameworks for embedded systems, firmware, and network protocols11.Analytical, detail-oriented, collaborative, and proactive in identifying and addressing vulnerabilities12.OSCP, CRTP, CRTO, eWPTX, CPENT, LPT, PNPT, or equivalent industry-recognized credentials