Digitive
Cybersecurity Test Engineer (Penetration Tester)
Digitive, Zeeland, Michigan, United States, 49464
Cybersecurity Test Engineer (Penetration Tester)
Expertise in Penetration Testing: Proven experience in planning and executing penetration tests on wired and wireless communication interfaces, preferably in an automotive or embedded systems context.
Knowledge of FOTA Security: Strong understanding of security vulnerabilities and attack vectors relevant to Firmware Over-The-Air (FOTA) update processes.
Testing and Validation Skills: Demonstrated ability to develop and implement various security-focused test types, including functional, vulnerability, and fuzz testing.
Technical Documentation: Proficiency in generating comprehensive technical documentation, including test specifications, test reports, and vulnerability findings.
Cybersecurity Fundamentals: Solid understanding of cybersecurity threat analysis, concepts, and specifications.
Tools Proficiency: Experience with relevant penetration testing tools and testing frameworks for network and communication protocols.
Communication: Excellent communication skills to effectively report technical findings to the team and project stakeholders.
Self-starter: Must be able to work effectively on assigned work products and duties with minimal supervision.
Job Responsibilities:
Conduct Penetration Testing: Plan, execute, and report on penetration testing activities specifically targeting one or more wired or wireless communication interfaces related to the FOTA (Firmware Over-The-Air) function.
Vulnerability Assessment: Perform testing to confirm that unidentified weaknesses and vulnerabilities remaining in the component are minimized.
Security Verification Support: Assist in developing and executing cybersecurity verification and validation test plans for each program.
Test Case Development: Prepare test specifications, including:
Functional tests (to cover all Cybersecurity Design Specifications).
Vulnerability tests (to cover every cybersecurity goal with one additional test case).
Fuzz tests (to cover Denial-of-Service (DoS) attack paths with the highest risk rating).
Reporting and Documentation: Contribute to the overall Cybersecurity Verification Report (CSVR) by documenting test specifications, test implementation, test logs, defect resolution tracking, and revisions.
Collaboration: Work with the cybersecurity team to support reviews of various cybersecurity work products (e.g., Cybersecurity Concept, Specifications, and Requirements).
Seniority level Mid-Senior level
Employment type Contract
Job function Information Technology
Industries Technology, Information and Media
#J-18808-Ljbffr
Expertise in Penetration Testing: Proven experience in planning and executing penetration tests on wired and wireless communication interfaces, preferably in an automotive or embedded systems context.
Knowledge of FOTA Security: Strong understanding of security vulnerabilities and attack vectors relevant to Firmware Over-The-Air (FOTA) update processes.
Testing and Validation Skills: Demonstrated ability to develop and implement various security-focused test types, including functional, vulnerability, and fuzz testing.
Technical Documentation: Proficiency in generating comprehensive technical documentation, including test specifications, test reports, and vulnerability findings.
Cybersecurity Fundamentals: Solid understanding of cybersecurity threat analysis, concepts, and specifications.
Tools Proficiency: Experience with relevant penetration testing tools and testing frameworks for network and communication protocols.
Communication: Excellent communication skills to effectively report technical findings to the team and project stakeholders.
Self-starter: Must be able to work effectively on assigned work products and duties with minimal supervision.
Job Responsibilities:
Conduct Penetration Testing: Plan, execute, and report on penetration testing activities specifically targeting one or more wired or wireless communication interfaces related to the FOTA (Firmware Over-The-Air) function.
Vulnerability Assessment: Perform testing to confirm that unidentified weaknesses and vulnerabilities remaining in the component are minimized.
Security Verification Support: Assist in developing and executing cybersecurity verification and validation test plans for each program.
Test Case Development: Prepare test specifications, including:
Functional tests (to cover all Cybersecurity Design Specifications).
Vulnerability tests (to cover every cybersecurity goal with one additional test case).
Fuzz tests (to cover Denial-of-Service (DoS) attack paths with the highest risk rating).
Reporting and Documentation: Contribute to the overall Cybersecurity Verification Report (CSVR) by documenting test specifications, test implementation, test logs, defect resolution tracking, and revisions.
Collaboration: Work with the cybersecurity team to support reviews of various cybersecurity work products (e.g., Cybersecurity Concept, Specifications, and Requirements).
Seniority level Mid-Senior level
Employment type Contract
Job function Information Technology
Industries Technology, Information and Media
#J-18808-Ljbffr