Senior Pentester M/F

You join the Governance & Technology department, and more specifically, the Cybersecurity Global testing & Tools team (About ~50 people) spread across 4 countries of France, USA, India & China.

This team has a mandate to do Penetration tests of all offers of SE, which means you get a chance to work on multiple technologies, domains in cybersecurity.

This role is very critical for the company and the penetration test results impact the Sell stage gate of Schneider Electric products.

Your missions:


* The main job involves execute tests based on formal Test Procedures on IoT & IT products and applications.


* Work with project teams to explain the Vulnerabilities.


* Create and enhance the Test Procedures and methods.


* Work closely with other Pen testers, project teams and SDL process teams to work on research, investigations, definition of standard operating Procedures.

deployments, training, creating assets for efficiency in the cyber-security practices.


* Strong knowledge and experience of various tools used in Security testing; related to SCA, SAST, DAST, Vulnerability & penetration testing tools.


* Investigate potential 3rdparty cyber security offer ools (startup, etc.) to improve the global security level of our offers


* Understand impact of various standards like IEC 62443 Data Privacy (US, GDPR...), CRA, IoT/Edge/cloud standard and regulation and make proposals for the improvement in our testing practices.


* Must be able to share and explain(defend) the reportsindings with project teams and Sr Managements.

You have :


* An Engineering or master's degree in computer, electrical, electronic or information security.


* About 5-8 years of Hands-on Experience in conducting Penetration tests on products


* OSCP or GPEN or equivalent certification related to penetration testing.


* Possesses advanced knowledge in the key principles and practices of Penetration Testing, Procedures, CVSS etc.


* Knowledge in risk analysis methods and Threat modeling


* Good Knowledge about Security Technologies like network, access control, cryptography etc.


* Skills and experience in all levels of pen testing from high level analysis of scanning tools until deep low level reverse engineering attacks is a nice to have.


* Must have skillsexpertise in scripting languages to automate.


* Mastery in English and French languages.


* Should have Knowledge in R&D Development esting processes ools used in waterfall, agile etc.


* Experience on Vulnerability research is a plus.


* knowledge of IT andor OT products domain is a plus.

You are:


* Excellent and passionate Penetration tester


* Having excellent time priority management skills along with interpersonal and teamwork skills


* Autonomous & curios with real capacity to learn quickly.


* Able to work with multi culture teams across globe.


* Able to mentor and groom young people in Penetration testing.
...