Product Security Test Engineer 15768

Om jobbet

Veritaz is a leading IT staffing solutions provider in Sweden, committed to advancing individual careers and aiding employers in ensuring the perfect talent fit. With a proven track record of successful partnerships with top companies, we have rapidly grown our presence in the USA, Europe, and Sweden as a dependable and trusted resource within the IT industry.

Assignment Description

We are looking for a Product Cybersecurity Verification & Validation Engineer

What You Will Work On

Executing product cybersecurity verification and validation according to IEC 62443

Managing the full lifecycle of PSAC security testing requests

Reviewing products for security testing readiness and compliance requirements

Performing vulnerability scanning, penetration testing, and security assessments

Conducting network, web, mobile, API, and embedded security testing

Performing SAST and DAST analysis

Testing industrial communication protocols and protocol stack robustness

Conducting hands-on security testing in the PSAC laboratory environment

Performing vulnerability analysis and assessing security findings

Creating detailed security test reports with actionable recommendations

Researching and developing new security test methodologies for emerging technologies

Supporting security requirement testing and threat mitigation activities

Collaborating with global development teams on security improvements

What You Bring

Bachelor's or Master's degree in Cybersecurity, Computer Engineering, or a related field

5+ years of hands-on experience in security testing, penetration testing, or vulnerability assessment

Strong knowledge of TCP/IP networking and application protocols

Experience with industrial control and embedded systems security

Proficiency with security testing tools (vulnerability scanners, pen-testing frameworks, SAST/DAST tools)

Strong understanding of OWASP Top 10 and SANS Top 25 vulnerabilities

Knowledge of industrial protocols such as EtherNet/IP, PROFINET, and OPC UA

Experience with cryptographic protocols including SSL/TLS

Programming or scripting skills for security test automation

Strong technical writing and documentation skills

Ability to work independently and collaboratively in cross-functional teams

Fluency in English, both written and spoken

Knowledge of IEC 62443 standards is a strong advantage

Security certifications are meritorious

Curiosity and passion for emerging cybersecurity technologies and attack techniques

Experience with hardware exploitation, side-channel analysis, or IoT/OT security is a plus