This position in the Product Validation Department requires skills in Security Testing of Ovation Hardware & Software applications designed mainly for power plant control, optimization, and simulation, in fully assembled system environment. The testing will be performed from various perspectives – Vulnerability assessment, Threat mitigation, Fuzz testing etc.
The successful candidate will work as part of a global multi-cultural development team
Responsibilities:
Perform Vulnerability testing of Hardware & Software Applications. Provide appropriate mitigation actions for the identified vulnerabilities to development team
Perform Threat Mitigation testing based on Threat Model identified
Work closely with development team to validate and strengthen Security Controls
Developing Security test plans, scenarios, and test cases
Maintain product Security quality testing within agreed schedule
Posting Security related issues; debugging and recreating reported problems
Developing Security test scripts and configurations
Preparing Security Tests for procedures from Software Specifications Security Requirements
Required skills and experience:
Desired work experience in years: 2 – 4 years
Masters in Cybersecurity OR B.Tech- Computer Engineering / MCA
Cybersecurity Certification will be an added advantage
Worked on DCS/PLC/SCADA an added advantage
Experience in Vulnerability testing (for example Nessus)
Experience in Fuzz testing & Network stress testing (for example Achilles, Burp Suite)
Experience in Threat Mitigation testing
Hands on experience with different security pen test tools like Burp Suite, Kali Linux, DAST like App Scanner or similar other tools widely used for Penetration Test.
Understanding of cryptography standards, authentication and authorization systems.
Understanding of security communication protocols (HTTPS, HSTS, TLS, SSH).
Experience using Windows operating systems, Installation of Windows OS, drivers, and Microsoft patches.
Knowledge of product components for Security solutions (AV, application control, etc.)
Good analytical skills and decision-making capabilities.
Strong teamwork skills
Fluent verbal and written communication in English
Optional skills
CEH certification
Strong Computer Skills
Understanding of Network Infrastructure Security (Network component placement, Switches and firewall hardening, blocking unwanted services and port IPS/IDS)
Familiar with OWASP Top10 and IEC62443 standard
Knowledge of scripting language (TCL, Perl, Python, Shell etc.) for exploit development
Possess collaboration skills and experience of working with internal/external partners
--
You must verify your mobile number to apply to this job.