Specialist I - Product Security

1 Month ago • 3-6 Years

Job Summary

Job Description

This role focuses on conducting offensive security testing on Philips products to ensure they meet security requirements before release. Responsibilities include manual vulnerability exploitation, report generation, identifying vulnerabilities, and providing recommendations. The role involves working with various testing areas, tools, and techniques. The candidate will also be involved in training, collaboration with stakeholders, creating and updating test specifications, and automating test cases. The role requires staying current with industry trends and applying knowledge to the workplace.
Must have:
  • 3-6 years of experience in vulnerability exploitation.
  • Experience in system, thick client, and web application testing.
  • Proficiency with penetration testing tools like Burp Suite.
  • Proficiency in scripting languages such as Python or PowerShell.
  • Strong verbal and written communication skills.
Good to have:
  • IoT Security testing experience.
  • Experience with Bluetooth/Zigbee/Wifi security testing.
  • Experience in Cloud security assessments.
  • Hands-on experience with Security Assessment / SCA tools.
  • Experience in programming platforms such as Java /.Net/ C and C++.
  • Certifications such as CEH/OSCP/CSSLP/CISSP/GCIH/GPEN.

Job Details

Job Title

Specialist I - Product Security

Job Description

This role is responsible for conducting offensive security testing on Philips products, ensuring they meet security requirements before being released to the market. Given the evolving threat landscape, this position is crucial in safeguarding the security of Philips products. By contributing to the overall security process, you will gain valuable experience and knowledge, while directly impacting Philips' Cost of Goods Sold and supporting the company's broader objectives and vision.

Technical skills and experience

  • 3-6 years of progressive experience in manual vulnerability exploitation, report generation, identifying vulnerabilities, and providing detailed recommendations for exploitation. Expertise in one or more of the following areas:

Required/Preferred Expertise:

  • System Testing: Proficiency in kiosk bypass techniques, hardening bypass methods, and bypassing application whitelisting solutions.

  • Thick Client Testing: Hands-on penetration testing experience with fat client applications developed in .NET, Java, C++, Electron, etc.

  • Web Application Testing: Expertise in testing web applications built with contemporary frameworks, such as React, Angular, Node.js, and others. In-depth understanding of web application security principles, OWASP Top 10, and common vulnerabilities in both legacy and modern applications (e.g., SQL injection, XSS, CSRF, etc.).

  • Tools & Techniques:

    • Thick Client Testing:  Expertise in using tools such as Microsoft Sysinternals Suite, dnSpy, Ghidra/IDA, and reverse engineering techniques for testing fat clients. Familiarity with debugging, decompiling, and analyzing .NET, Java, C++, and Electron-based client applications.

    • Web Application: Proficiency with web application penetration testing tools such as Burp Suite, OWASP ZAP, and other automated or manual testing tools for vulnerabilities like SQL injection, XSS, SSTI and others.

    • General Tools: Familiarity with industry-standard penetration testing tools (e.g., Metasploit, Nmap, Nessus) for both web and system/thick client applications, with an emphasis on manual and automated vulnerability identification and exploitation.

  • Scripting: Proficiency in scripting languages such as Python, PowerShell, or Rust to automate repetitive test cases and process-related activities, streamlining testing workflows and enhancing efficiency.

Good to have Expertise:

  • IoT Security testing

  • Bluetooth/Zigbee/Wifi security testing

  • Infrastructure security testing.

  • Cloud security assessments.

  • Good hands-on experience with Security Assessment / SCA tools.

  • Exposure to current security threats, specifically application security.

  • Experience/exposure to programming platforms such as Java /.Net/ C and C++, is an added advantage.

  • Should have experience in end-to-end application security testing for multiple products, projects, or applications, with a strong understanding of the SDLC and testing lifecycle.

  • Certifications: CEH/OSCP/CSSLP/CISSP/GCIH/GPEN (at least one)

Key Area Responsibility

  • Performs Ethical Hacking into products/solutions.

  • Stay current with industry trends and consistently apply this knowledge and expertise in the workplace.

  • Conduct training sessions and workshops within areas of expertise.

  • Pro-actively co-ordinate and collaborate with different stake holders at different stages of security testing in the project.

  • Creates and updates test specifications.

  • Ensure technical & testing documentation is kept up to date and audit ready.

  • Automate repetitive test cases and process-related activities, streamlining testing workflows and enhancing efficiency.

Personal skills include:

  • Exemplifies a positive attitude and strong persistence in overcoming technical challenges and contributing to a collaborative work environment.

  • Excellent verbal and written communication skills.

  • Proven ability to thrive and adapt in a fast-paced, dynamic environment.

  • Proactive and capable of working effectively both independently and as part of a team.

  • Proven ability to handle confidential information with discretion, coupled with strong analytical and innovative problem-solving skills.

  • Highly passionate about security and dedicated to continuous improvement of skills and expertise.



About Philips
We are a health technology company. We built our entire company around the belief that every human matters, and we won't stop until everybody everywhere has access to the quality healthcare that we all deserve. Do the work of your life to help the lives of others.
• Learn more about our business.
• Discover our rich and exciting history.
• Learn more about our purpose.

If you’re interested in this role and have many, but not all, of the experiences needed, we encourage you to apply. You may still be the right candidate for this or other opportunities at Philips. Learn more about our commitment to diversity and inclusion here.

Similar Jobs

Google - Red Teaming and Threat Emulation Consultant

Google

New South Wales, Australia (On-Site)
1 Month ago
Sitetracker - QA Manual - Salesforce

Sitetracker

Bengaluru, Karnataka, India (Hybrid)
3 Years ago
Aerospike - Senior Quality Engineer

Aerospike

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Go guardian - Staff Security Engineer

Go guardian

(Remote)
1 Month ago
PwC - Application Security Manager

PwC

Makati, Metro Manila, Philippines (On-Site)
8 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Snyk - Senior Frontend Engineer

Snyk

Lisbon, Lisbon, Portugal (Hybrid)
1 Month ago
Krafton india - Sr Manager - QA

Krafton india

Bengaluru, Karnataka, India (On-Site)
3 Weeks ago
ByteDance - Security Engineer (Penetration Tester) - 2025 Start

ByteDance

Singapore (On-Site)
7 Months ago
Progres - Manager, Software Engineering

Progres

Burlington, Massachusetts, United States (Hybrid)
2 Months ago
OKX - Graduate Hire 2024/25 - SRE/Security Engineer

OKX

Hong Kong (On-Site)
7 Months ago
Glean - Software Engineer, Security

Glean

Palo Alto, California, United States (Hybrid)
1 Month ago
Synechron - Senior Test Manager – Investment Banking, Data Migration & Transformation Expert

Synechron

Bengaluru, Karnataka, India (On-Site)
2 Weeks ago
Archipelago - Software Development Engineer in Test

Archipelago

(Remote)
1 Month ago
SOFTSWISS - Application Security Engineer

SOFTSWISS

(Remote)
1 Month ago
Gitlab - Senior Application Security Engineer

Gitlab

(Remote)
1 Month ago

Get notifed when new similar jobs are uploaded

Jobs in Bengaluru, Karnataka, India

Qualcomm - Physical Design Engineer

Qualcomm

Noida, Uttar Pradesh, India (On-Site)
3 Weeks ago
Meesho - Product Manager II .

Meesho

Bengaluru, Karnataka, India (On-Site)
7 Months ago
WebTech Corporation - Staff Supply Chain Security Engineer

WebTech Corporation

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Capgemini - Java Fullstack

Capgemini

Pune, Maharashtra, India (On-Site)
1 Month ago
Boomi - Software Senior Engineer - AI Connectors

Boomi

Bengaluru, Karnataka, India (Hybrid)
1 Month ago
Ness Digital - Engineering Manager

Ness Digital

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Banyan Software - Front End Developer

Banyan Software

Chennai, Tamil Nadu, India (Hybrid)
2 Weeks ago
Cognite - Senior Front-end Engineer

Cognite

Bengaluru, Karnataka, India (Hybrid)
7 Months ago
Guardian - Senior Engineer - IT

Guardian

Chennai, Tamil Nadu, India (On-Site)
2 Weeks ago
PwC - Senior Associate - Hyderabad-Salarpuria - Technology Consulting

PwC

Hyderabad, Telangana, India (On-Site)
8 Months ago

Get notifed when new similar jobs are uploaded

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

About The Company

At Philips, we believe that every human matters. As a global health-tech leader, we focus on improving people’s health and wellbeing through meaningful innovation. The people who work here share our passion and are motivated to bring this purpose to life.For more than 130 years, we have been creating technologies and innovations that improve people's lives and support healthcare practitioners. Headquartered in the Netherlands and operating in more than 100 countries globally, we focus our advanced technology and deep clinical and consumer insights on Precision Diagnosis, Image Guided Therapy, Enterprise Informatics, Monitoring/ Connected Care, Sleep & Respiratory Care and Personal Health.Together, we deliver better care for more people because we believe that every human matters.

Indiana, United States (On-Site)

Suzhou, Jiangsu, China (On-Site)

Montreal, Quebec, Canada (On-Site)

Pune, Maharashtra, India (On-Site)

Shenyang, Liaoning, China (On-Site)

Haifa, Haifa District, Israel (On-Site)

Shenyang, Liaoning, China (On-Site)

San Diego, California, United States (On-Site)

Stamford, Connecticut, United States (On-Site)

View All Jobs

Get notified when new jobs are added by Philips

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug