Senior Cyber security Engineer
Emerson
In This Role, Your Responsibilities Will Be:
Who You Are:
For This Role, You Will Need:
Preferred Qualifications That Set You Apart:
Our Culture & Commitment to You:
- Work as per the direction from BU Product Security Officer / Lead.
- Create security test plan and associated test artefacts to support BU Product Certification efforts.
- Own Security Verification and Validation activity for all products and execute the tests below for every major and minor release:
- Security requirement testing
- Threat Mitigation testing
- Static Code Analysis
- Attack surface analysis
- Software composition analysis
- Coordinate with independent penetration test team (GCC) for:
- Abuse case / Fuzz testing
- Known Vulnerability scanning
- Penetration test
- PSIRT specific test
- Support development team for validating fixes prior to sharing build with independent penetration test team.
- Collaborate with Product Security engineer for handling PSIRT and vulnerability management activities.
- Generate Project Metrics as per EIC-Pune and / or Business Unit Guidelines
- Report Local Manager for All the activities
- Contribute to EIC-Pune Assigned Initiatives
- Should be able to work in Engineering Laboratory for Product & System Level Testing following Safety Practices & Guidelines.
Who You Are:
- As a Product Security Verification and Validation Engineer, you are proficient in threat modeling, risk assessment, and integrating security validation into CI/CD pipelines while ensuring compliance with industry cybersecurity standards. You ensure embedded products are resilient against real-world attacks while meeting regulatory and industry cybersecurity standards.
For This Role, You Will Need:
- Bachelor's degree and/or equivalent years of relative experience.
- 3-5 years of experience and familiarity with product security standards and initiatives or practical work experience related to the verification and validation of products, services, and solutions.
- Knowledge of cybersecurity standards and frameworks (IEC 62443, ISO 27001, NIST, OWASP).
- Familiarity with risk assessment methodologies and CVSS scoring.
- Experience in industrial control systems (ICS), embedded systems, or network security is preferred.
- Experience in secure by design principles, best practices and the integration of security into preexisting development practices.
- Familiar with concepts such as secure development lifecycle, secure by design, and defense in depth.
- Familiar with Microsoft Office tools for effective communications and information management.
- Ability to organize, prepare and make compelling presentations.
- Self-motivated and able to work under tight timeline.
- Strong problem solving / interaction management skills.
- Strong organizational and collaboration skills.
- Respect Company's Values and Ethics.
Preferred Qualifications That Set You Apart:
- Master's degree or equivalent experience in electronics engineering or related field.
- Familiarity with penetration testing tools (e.g., Metasploit, Wireshark, Burp Suite).
- Familiarity with hardware design and debugging.
- Understanding of network protocols (TCP/IP, HTTPS, SSH, SNMP, OPC-UA, MQTT).
- Understanding of firewalls, IDS/IPS, endpoint security, and access control systems.
- Experience with secure coding practices and code review processes.
- Prior experience in the industrial/ factory automation or control systems industry.
Our Culture & Commitment to You:
- At Emerson, we are committed to fostering a culture where every employee is valued and respected for their unique experiences and perspectives. We believe a diverse and inclusive work environment contributes to the rich exchange of ideas and diversity of thoughts, that inspires innovation and brings the best solutions to our customers.
- This philosophy is fundamental to living our company's values and our responsibility to leave the world in a better place. Learn more about our Culture & Values and about Diversity, Equity & Inclusion at Emerson .
- If you have a disability and are having difficulty accessing or using this website to apply for a position, please contact: idisability.administrator@emerson.com .
JOB SUMMARY
Senior Cyber security Engineer
Emerson
Pune
a day ago
N/A
Full-time
Senior Cyber security Engineer