Verve Industrial Protection is hiring a
Product Security Test Engineer

Summary

The Security Test Engineer will perform manual and automated security tests on Verve's software products, coordinate with development and security teams, and write detailed reports. Candidates should have at least 3 years of experience in pen testing, vulnerability analysis, or similar roles, understand web application, linux/unix system, network, and cryptography security, be familiar with CVE, CPE, and CVSS, have strong communication skills, and be legally authorized to work in the US.

Requirements

• At least 3 years experience as a pen tester, vulnerability analyst, or similar technical role related to software security
• Understanding of web application security, linux/unix system security, network security, and applied cryptography
• Familiarity with CVE, CPE, and CVSS
• Strong written & verbal communication skills
• Legal authorization to work in the US is required

Responsibilities

• Perform product vulnerability assessments, product security research, penetration tests, and exploratory security testing against Verve’s software products
• Assist with architecture development, design, and implementation of security test automation to support a continuous integration/DevSecOps product development cycle
• Work with development and software QA teams to stay aware of changes being made to the Verve products
• Coordinate with development and security leadership regarding findings, areas of concern, and opportunities for improvement related to product security

Preferred Qualifications

• Experience as a software developer or working closely with developers, ideally in a CI/CD environment
• Familiarity with OT devices and environments
• Experience using various security assessment tools (SCA, SAST, DAST, and vulnerability scanners)