Security Test Specialist

Education :

BS, Master or equivalent degree in Computer Engineering, Software Engineering, Cybersecurity or other related fields

Experience :

Minimum of 6 years of professional experience within Information Technology, Software Development or related field.

Minimum of 3 years of working knowledge and understanding of security engineering, system and network security, authentication and application security. Including multiple combinations of the following :

Threat Analysis and Risk Assessment activities in product development

Software development processes and secure coding

Developing security procedures and product security specifications

Vulnerability / penetration testing

Familiarity with vulnerability Management activities and processes (a plus point)

Certification in security testing field a plus

Skills :

General knowledge of medical device standards

Expert knowledge of security standards and testing methods - ISO / IEC27000 series, NIST Cybersecurity Framework, SP800 series, etc.

Strong Analytical and problem-solving skills

Ability to express ideas clearly both in written and oral communications.

Ability to analyze technical requirements and develop well-structured solutions

Ability to transform requirements in a consistent, abstract representation into a given tool environment

Responsibilities :

As specialist / associate expert for product security test activities the main tasks will be as following :

Preparation, execution, documentation and follow-up of requested security tests in the following areas :

Static Application Security Testing (SAST)

Dynamic Application Security Testing (DAST)

Fuzz Testing

Penetration Testing

Supporting projects in general questions regarding security test activities

Support training activities related to security testing

Tool administration support for local test tool environments

Support creation and maintenance of security test related topics, e.g. guidelines, work instructions