Job Description
At Eurofins E&E North America, we’re at the forefront of ensuring the safety, reliability, and security of cutting-edge technologies that power the world. As an IoT Cybersecurity Testing Engineer, you’ll play a pivotal role in delivering high-end cybersecurity services to our clients, safeguarding IoT products against emerging threats, and ensuring compliance with international standards. If you’re passionate about IoT security, thrive in a dynamic environment, and want to make an impact with a globally respected organization, we want to hear from you!
Based in the vibrant Baltimore, MD you’ll collaborate with industry experts, leverage your technical expertise, and stay ahead of the curve in IoT security architectures, threats, and advancements. This is your opportunity to lead transformative projects and protect the future of connected technologies.
** Key Responsibilities**
- Deliver Expert Cybersecurity Services: Conduct testing, assessments, and evaluations of industrial and consumer IoT products to ensure robust cybersecurity throughout the product development lifecycle.
- Develop Testing Frameworks: Create and refine testing specifications, methodologies, and setups based on international standards (e.g., EN 18031, IEC 62443, EN 303 645), preparing detailed test reports to guide clients.
- Drive Innovation: Design and optimize automation tools for software vulnerability assessments, enhancing detection of design flaws and improving efficiency.
- Risk Management: Lead risk analyses aligned with standards like ISO 27001, ISO 27005, NIST, and EBIOS, ensuring comprehensive security strategies.
- Client Leadership: Manage and lead customer-facing projects, providing expert guidance on cybersecurity best practices and solutions.
- Stay Ahead of Threats: Maintain deep knowledge of IoT architectures (endpoints, network protocols, gateways, cloud, sensors, embedded systems, etc.) and emerging security challenges.
Technical skills we are looking for:
- Suite, Privilege escalation, firmware extraction, buffer Overflow Exploitation, Web, Hacking
- Experience in cybersecurity consulting in an ICS environment, e.g., assessments, gap analysis and mitigation planning. Strong understanding of IoT-based technologies and their cybersecurity requirements (e.g., ETSI EN 303 645, NIST 8259, CSA CLS).
- Familiarity with industrial IoT standards (IEC 62443 series) and network protocol security (CISSP, CISA, or equivalent certifications are a plus).
- Expertise in secure network design, system architecture, and key penetration testing tools (e.g., NMAP, Nessus, Metasploit, Burp Suite).
- Proficiency in techniques such as privilege escalation, firmware extraction, buffer overflow exploitation, and web hacking.
- Experience in cybersecurity consulting within Industrial Control Systems (ICS) environments, including assessments, gap analysis, and mitigation planning.
- A holistic perspective on cybersecurity, penetration testing, and hacking methodologies.