Product Security Tester (225-902)

A Product Security Tester is a vital role within organizations that prioritize the security of their software and hardware products. This position involves rigorous testing of products to ensure that they are designed and operate with the utmost security. Individuals in this role will work closely with product development teams to identify potential security vulnerabilities and implement necessary security measures. As security threats continually evolve, the Product Security Tester must stay abreast of the latest security trends and threat vectors to safeguard company assets and maintain customer trust. This role requires a keen eye for detail, a strong understanding of security practices, and the ability to communicate findings effectively to technical and non-technical stakeholders.

Responsibilities

• Conduct security assessments and penetration tests on company products and applications.
• Collaborate with development teams to integrate security tools and processes into product designs.
• Identify, document, and report security vulnerabilities and risks within products.
• Work with cross-functional teams to develop and implement secure coding practices.
• Continuously monitor and evaluate security threats to stay updated with emerging risks.
• Prepare detailed reports summarizing test results, vulnerability assessments, and recommendations.
• Assist in the development of automated security testing processes and tools.
• Participate in code reviews to ensure adherence to security standards and practices.
• Provide expertise and guidance on security standards and compliance requirements.
• Conduct regular training sessions for product teams to raise awareness of security best practices.
• Support incident response and forensic investigations in case of security breaches.
• Document security policies and procedures to maintain compliance with industry regulations.

Requirements

• Bachelor's degree in Computer Science, Cybersecurity, or a related field is required.
• Minimum of 3 years experience in product security testing or similar role.
• Strong understanding of common security vulnerabilities, threats, and remediation techniques.
• Proficiency in security testing tools such as Burp Suite, Metasploit, or Nessus.
• Excellent problem-solving skills and a strong attention to detail are essential.
• Ability to communicate complex security findings to technical and non-technical stakeholders.
• Certifications like CISSP, CEH, or OSCP are highly desirable.