Overview:
The System Verification team is actively seeking Analyst Lead, Product Security. As a crucial member of the team, the SV Engineer will collaborate closely with the SV, Product Management,Cloud Applications and Development teams. The ideal System Verification Engineer would Serve as a technical leader for major product security test activities across multiple simultaneous projects. Ultimately, the SV Engineer's responsibility is paramount, as they ensure the delivery of high-quality products on schedule and demonstrate the same via defined metrics.
Responsibilities:
- Serve as a technical leader for major product security test activities across multiple simultaneous projects.
- Review Product Requirements, Architecture, Implementation, and Deployments to identify, assess, and test Threat Vectors
- Audit software inventory to identify vulnerabilities and risks and apply standard practices for hardening.
- Liaise with external teams (e.g., developers and product managers) to establish and reach a consensus on security measures.
- Create comprehensive and well-structured security test plans and test cases.
- Estimate, prioritize, plan, conduct, and coordinate multiple concurrent security testing and assessment activities.
- Proactivity monitor National Vulnerability Database to identify, assess, and test potential vulnerabilities.
- Identify, record, and document product vulnerabilities and escalate their severity based on impact on product security.
- Prepare technical reports and papers on product security and vulnerabilities.
- Collaborate with colleagues on authentication, authorization, and encryption solutions.
- Evaluate new technologies, processes, and tools that enhance security capabilities.
- Provide process improvement recommendations.
- Mentor other engineers and technicians.
Qualifications:
- Masters degree in computer engineering, Software Engineering, or equivalent technical Degree; or equivalent combination of education and experience.
- 10+ years of related engineering experience
- Hands-on experience with related security testing, script development and associated tools
- Demonstrated proficiency at identifying security issues during each stage of a projects life cycle
- Developed and automated Vulnerability Assessment and Penetration Testing
- Investigated intrusion incidents, conducted forensic investigations, and reviewed and tested mitigation efforts
- Assessed and tested to Multinational regulatory requirements that affect product security.
- Configured and installed firewalls and intrusion detection systems.
- Experience with key Vulnerability and PEN test tools
- Metasploit
- Nessus
- Nmap
- W3af
- Acunetix
- Retina
- Cain & Abel
- A high degree of comfort with ambiguity in early-phase investigative projects
- Experience estimating the effort to reach project milestones and coordinating the team activities to meet schedules and goals.
- Outgoing personality with a strong desire to provide mentorship within the organization.
- Is a self-starter who can manage multiple tasks and work with minimal supervision.
- Experience working with cross-functional teams.
Employment Type: Full Time, Permanent
Read full job description