该岗位负责电子电气类产品网络安全相关的测试工作。
This position is responsible for focusing domain areas of expertise as well as a good breadth of experience across lot Ecosystem cyber security.
- Conduct IoT security testing (IoT ecosystem) against industry security standards such as EN303645, NIST 8259/8425, RED-DA and NIST SP publications. (50%)
- Conduct lo penetration testing, risk assessment and vulnerability assessments across a wide variety of platforms and technologies. (20%)
- Communicate with customers and provide technical advice with regard to IoT security domain. (15%)
- Doing research on IoT security technologies and keeping track of global security events. developing and maintaining security attack tools (5%)
Keeping up-to-date with tools, countermeasures, threats and technologies. (10%) (10%)
- Bachelor's degree in Cybersecurity, Computer Science, Computer Engineering, or related field.
- Have a broad understanding of various information technology areas used to support and manage the business (i.e. web, networking, database, cloud, telephony, mobile, applications, etc,) and an in-depth experience in at least two area of relevant technology.
- Proficiency with Unix/Linux, and mobile platform operating systems.
- Be familiar with TCP/IP based network protocols, basic PKl technology and cryptographic algorithms
- Be familiar with one of script languages (Pyihon, JavaScript, Shell etc..). Can develop test scripts.
- Be familiar with wireless security such as Wi-Fi, Bluetooth and Zigbee
- Comprehension of OWASP Top 10 (both web and IoT) and NIST technical controls and standards, and able to understand and communicate how the standards and controls relate to risk management strategies OWASP Top 10 (We b, APP and IoT).