Job Description
ᴘᴜʀᴘᴏsᴇ ᴏғ ᴛʜɪs ᴘᴏsɪᴛɪᴏɴ
The role is a principallevel cybersecurity testing position within the Cybersecurity Technology (CT) team.
The position focuses on leading complex security testing activities and providing strong technical influence across product teams to ensure cybersecurity practices are correctly implemented and consistently applied.
This role is designed for experienced cybersecurity professionals who wish to remain handson while expanding their technical influence and decisionmaking impact, without taking on peoplemanagement responsibilities.
This position plays a critical role in advancing the organization’s product cybersecurity strategy by driving highimpact security testing, validating compliance with international cybersecurity standards, and influencing product teams to adopt effective and sustainable security practices.
Compared with seniorlevel engineering roles, this position places greater emphasis on technical judgment, initiative, and influence, ensuring cybersecurity efforts not only meet compliance requirements but also improve longterm product security quality.
ᴍᴀᴊᴏʀ ᴀʀᴇᴀs ᴏғ ʀᴇsᴘᴏɴsɪʙɪʟɪᴛʏ
Lead and influence product cybersecurity compliance activities against international standards (e.g., IEC 62443, RED, CRA).
Plan, execute, and technically guide advanced cybersecurity testing activities, including penetration testing, threat‑mitigation validation, and complex attack scenarios.
Perform in‑depth vulnerability assessments and risk evaluations, providing clear, actionable, and decision‑ready security recommendations to R&D teams.
Review and validate cybersecurity testing results produced by other engineers, ensuring accuracy, consistency, and appropriate risk assessment.
Collaborate closely with R&D and Software Quality Assurance (SQA) teams to ensure security findings are properly addressed and resolved.
Drive continuous improvement of cybersecurity testing methodologies, tools, and processes to enhance product security quality and scalability.
Act as a trusted cybersecurity advisor, influencing technical decisions through expertise rather than authority.
ᴍɪɴɪᴍᴜᴍ ᴊᴏʙ ʀᴇǫᴜɪʀᴇᴍᴇɴᴛs
Master’s degree in Computer Science, Information Security, Electrical Engineering, or a related discipline.
At least 3 years of hands-on experience in cybersecurity testing, product security validation, secure software development, or related fields.
Solid understanding of vulnerability assessment methodologies, penetration testing techniques, and threat modeling concepts.
Experience using common security testing tools such as Nessus, Acunetix, Burp Suite, Kali Linux, or equivalent tools.
Familiarity with international cybersecurity standards such as IEC 62443, RED, or CRA, and the ability to apply them in realworld product environments.
Relevant certifications related to penetration testing (e.g., OSCP, CPENT) or product cybersecurity compliance (e.g., IEC 62443) are a strong advantage.
ʀᴇǫᴜɪʀᴇᴅ ᴄᴏᴍᴘᴇᴛᴇɴᴄɪᴇs
Demonstrates strong cybersecurity expertise with sound technical judgment and problem‑solving ability.
Takes initiative in identifying security risks, improvement opportunities, and long‑term challenges.
Able to clearly communicate complex security concepts to engineers and cross‑functional stakeholders.
Exhibits strong ownership and accountability, consistently delivering high‑quality outcomes.
Capable of providing technical guidance and influence to other cybersecurity engineers while remaining hands‑on.
#Software-Quality-Assurance
#LI-RL1