26 days old

Security Analyst Penetration Testing

Princeton, NJ
**Security Analyst Penetration Testing**

Locations:Princeton, New Jersey

Job Family: Engineering


English (US)

**Job Description**

**Division:** Corporate Technology

**Business Unit:** Corporate Technology

**Requisition Number:** 222435

**Primary Location:** United States-New Jersey-Princeton

**Assignment Category:** Full-time regular

**Experience Level:** Mid level

**Education Required Level:** Bachelor's Degree

**Travel Required:** 20%

**Division Description:**

For nearly 170 years, pioneering technologies and the business models developed from them have been the foundation of Siemens success. Our central research and development unit, Corporate Technology (CT) plays an important role in this. Together with our global network of experts, we are a strategic partner to Siemens operative units and provide important services along the entire value chain from research and development to production and quality assurance, as well as optimized business processes. Our support provided to the businesses in their research and development activities is ideally balanced with our own future-oriented research.

We at Corporate Technology are more than employees: We are actively helping to make peoples lives a little better every day. Would you like to be a part of that? Then join us. We offer you a high level of practical relevance as well as an opportunity to individually contribute your knowledge and your visions around the world. Whether youre helping to develop products for the operating units or working in interdisciplinary projects for the business areas: At Corporate Technology youll be working in the heart of Siemens technological research together with the best.

**Job Description:**

**Penetration Tester Security Assurance for Industrial Digitalization in the 21st Century**

**Heres the right opportunity for You!**

Join our cyber security research and consulting group located in Princeton, NJ, and deliver expert security assessments / penetration tests for our internal customers. In this role, you will search for new vulnerabilities and provide security assurance for the owners of corporate IT applications, in a wide range from web applications to SAP systems. In addition, you will have the opportunity to pentest industrial applications and Siemens products and solutions, from areas such as control systems used in energy utilities that are part of the nations critical infrastructure, smart factories, building automation systems, intelligent transportation systems, and innovative new products and solutions developed by Siemens. Our close contact to different business units in Siemens provides the opportunity to contribute to and gain experience in real industrial applications.

Are you up for the challenge? zAzMTQ1NDAzNTMzNmUzMDczNGIzMTY0NDQzMTMzNzM=

**What will be my responsibilities?**

Your job will be to lead and conduct Cyber Security Assessments and Penetration Tests (hands-on work including manual and custom pentesting approaches) as an individual, self-managed tester, or in small project teams.

You task will be to search for security vulnerabilities in both traditional IT assets (web applications, fat clients, ERP systems, installations of COTS products), as well as Siemens products. Initial responsibilities will focus on web application security, but will be expanded to cover more non-standard IT, industrial devices, and Siemens products based on individual capabilities.

Be able to document your findings for management and technical staff and recommend mitigating actions.

You will get to work with application/product owners within Siemens to determine their need for security assessments, present and explain the employed methodology, and support them with feedback and verification during mitigation.

You will contribute to our research agenda with the goal to develop ideas, prototypes and innovative improvements, to continuously advance our capabilities in the area of Security Assessments and Penetration Testing.

**What do I need to qualify for this position?**

8+ years of hands-on penetration testing required

Excellent up-to-date technical and hands-on knowledge, experience in current attack methods, penetration testing methods, and hacking tools; especially for web applications, required.

Ability to understand, find, verify, and explain security vulnerabilities. Review and ensure the secure configuration of OS and network devices

GPEN, GWAPT, GXPN, OSCP, OSCE, CCNP, and CCSP are a plus but not required.

Proficiency in a scripting language like Python, PowerShell, LUA, or Bash.

Problem solver who sees a roadblock and figures out how to get around it with a strong hands-on and can-do attitude.

Bachelors degree required. M.Sc. in Computer Science, Information Security, Mathematics preferred; experience in a research environment / research projects a plus

Willingness to travel, up to 20% (domestic/international)

Successful candidate must be able to work with controlled technology in accordance with US Export Control Law. US Export Control laws and applicable regulations govern the distribution of strategically important technology, services and information to foreign nationals and foreign countries. Siemens may require candidates under consideration for employment opportunities to submit information regarding citizenship status to allow the organization to comply with specific US Export Control laws and regulations. Additional information on the US Export Control laws & regulations can be found on http://www.bis.doc.gov/index.php/policy-guidance/deemed-exports/deemed-exports-faqs?view=category&id=33#

**Equal Employment Opportunity Statement**

Siemens is an Equal Opportunity and Affirmative Action Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to their race, color, creed, religion, national origin, citizenship status, ancestry, sex, age, physical or mental disability, marital status, family responsibilities, pregnancy, genetic information, sexual orientation, gender expression, gender identity, transgender, sex stereotyping, protected veteran or military status, and other categories protected by federal, state or local law.

**EEO is the Law**

Applicants and employees are protected under Federal law from discrimination. To learn more, Click here at https://www.dol.gov/ofccp/regs/compliance/posters/ofccpost.htm .

**Pay Transparency Non-Discrimination Provision**

Siemens follows Executive Order 11246, including the Pay Transparency Nondiscrimination Provision. To learn more, Click here at https://www.dol.gov/ofccp/pdf/pay-transp_formattedESQA508c.pdf .


  • Engineering

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Security Analyst Penetration Testing

Princeton, NJ

Share this job

Security Analyst Penetration Testing

Princeton, NJ

Separate email addresses with commas

Enter valid email address for sender.

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast