Main Responsibilities:

• Responsible for the security attribute of quality for the solution
• Responsible to meet security requirement, known threats have been mitigates, known vulnerabilities, security level is maintained
• Facilitate external penetration testing and contribute to the Certification
• Track all security issues to closure
• Participate in the Threat Modeling Process and document tests for the requirements that will be produced from this exercise
• Working experience on DevSecOps
• Know how to run Nessus and vulnerability scanners
• Know how to use the CVSS scoring tool for security bugs
• Master the STRIDE failure modes for application security
• When Certification is required, contribute to the relation with organization and third party's certification lab in coordination with the Project Test Leaders.
• Network Design

• Bachelor's in IT or Computer Science/Engineering, with an interest & working experience in cybersecurity and related technologies
• Strong knowledge and working experience in making offers/solutions comply with IEC 62443 & 27001 standards
• Strong analytical and conceptual thinking, with the ability to distil and summarize complex issues to propose potential solutions
• Working experience with multi-discipline solutions teams in Agile manner
• IC 32 , 33 or equivalent certification