Logo
Digitive

Cybersecurity Test Engineer (Penetration Tester) Job at Digitive in Zeeland

Digitive, Zeeland, MI, United States, 49464

Save Job

Cybersecurity Test Engineer (Penetration Tester)

  • Expertise in Penetration Testing: Proven experience in planning and executing penetration tests on wired and wireless communication interfaces, preferably in an automotive or embedded systems context.
  • Knowledge of FOTA Security: Strong understanding of security vulnerabilities and attack vectors relevant to Firmware Over-The-Air (FOTA) update processes.
  • Testing and Validation Skills: Demonstrated ability to develop and implement various security-focused test types, including functional, vulnerability, and fuzz testing.
  • Technical Documentation: Proficiency in generating comprehensive technical documentation, including test specifications, test reports, and vulnerability findings.
  • Cybersecurity Fundamentals: Solid understanding of cybersecurity threat analysis, concepts, and specifications.
  • Tools Proficiency: Experience with relevant penetration testing tools and testing frameworks for network and communication protocols.
  • Communication: Excellent communication skills to effectively report technical findings to the team and project stakeholders.
  • Self-starter: Must be able to work effectively on assigned work products and duties with minimal supervision.

Job Responsibilities:

  • Conduct Penetration Testing: Plan, execute, and report on penetration testing activities specifically targeting one or more wired or wireless communication interfaces related to the FOTA (Firmware Over-The-Air) function.
  • Vulnerability Assessment: Perform testing to confirm that unidentified weaknesses and vulnerabilities remaining in the component are minimized.
  • Security Verification Support: Assist in developing and executing cybersecurity verification and validation test plans for each program.
  • Test Case Development: Prepare test specifications, including:
    • Functional tests (to cover all Cybersecurity Design Specifications).
    • Vulnerability tests (to cover every cybersecurity goal with one additional test case).
    • Fuzz tests (to cover Denial-of-Service (DoS) attack paths with the highest risk rating).
  • Reporting and Documentation: Contribute to the overall Cybersecurity Verification Report (CSVR) by documenting test specifications, test implementation, test logs, defect resolution tracking, and revisions.
  • Collaboration: Work with the cybersecurity team to support reviews of various cybersecurity work products (e.g., Cybersecurity Concept, Specifications, and Requirements).

Seniority level

Mid-Senior level

Employment type

Contract

Job function

Information Technology

Industries

Technology, Information and Media

#J-18808-Ljbffr