Philips Senior Software Engineer- Product Security in Bangalore, India

null

In this role, you have the opportunity to:

You will be part of The Security Centre of Excellence(SCoE) organization is involved in evaluating new platforms and technologies and providing services to the Philips Global Healthtech organization in the area of product security. The 22 member team head-quartered in Bangalore is currently engaged in delivering security testing services in static code analysis, dynamic testing, fuzz testing, mobile testing, IOT testing and open source vulnerable component detection. Our current outreach to have the static code analysis Fortify to be deployed across the enterprise, which, provides opportunity for technology lovers the right platform to work with varied technologies from legacy to next generation code bases involving applications that vary from embedded systems to mobile applications. In this strive to enforce secure code in the products that we develop we open our doors to anybody who fits the skill set described below to join our team in making the products that Philips develop secure.

You are responsible for:

Performs the role of Code analyzer, automated using Fortify / manual code reviews

Ensure technical & testing documentation is kept up to date and audit ready

Pro-actively co-ordinate and collaborate with different stake holders for different stages of development life cycle of the project.

Performs Ethical Hacking into products/solutions.

Be up-to-date with industry trends and reflect the same competency at work.

Give trainings/workshops in the field of expertise.

Pro-actively co-ordinate and collaborate with different stake holders at different stages of security testing in the project.

Creates and updates test specifications.

Ensure technical & testing documentation is kept up to date and audit ready

converting the test protocols into automated scripts for execution

To succeed in this role, you should have the following skills and experience:

4-7 years of progressive experience in secure code analysis along with development experience.

Good hands-on experience with Application Security Assessment tools both static and dynamic like Fortify SSC suites (preferred), CodeSecure , AppScan, WebInspect, Burp, Paros

Experience/exposure to programming platforms such as Java /.Net/ C and C+Exposure to current security threats, specific to the application security.

Mobile application hacking

IoT Security testing

Bluetooth/Zigbee/Wifi security testing

Web application / Web Services security testing.

Infrastructure security testing.

Cloud security assessments.

Automation and integration of security testing.

Good hands-on experience with Security Assessment tools.

Experience on manual exploitation of vulnerabilities, generating the reports, pin-pointing the vulnerabilities and provide detail recommendations on vulnerability exploitation

Should have been involved in end to end application security testing for multiple products / projects / applications with good appreciation for SDLC and test life cycle.

Exposure to current security threats, specific to the application security.

Experience/exposure to programming platforms such as Java /.Net/ C and C++, is an added advantage.

Certifications: CEH/OSCP/CSSLP/CISSP/GCIH/GPEN (at least one)

Good hands-on experience with Security Assessment tools.

Experience on manual exploitation of vulnerabilities, generating the reports, pin-pointing the vulnerabilities and provide detail recommendations on vulnerability exploitation

Should have been involved in end to end application security testing for multiple products / projects / applications with good appreciation for SDLC and test life cycle.

Automation and integration of security testing.

Exposure to current security threats, specific to the application security.

Experience/exposure to programming platforms such as Java /.Net/ C and C++, is an added advantage.

Certifications: CEH/OSCP/CSSLP/CISSP/GCIH/GPEN (at least one)

Positive attitude

Excellent oral/written communication skills written and spoken.

Ability to adapt and work in a highly dynamic environment

Self-starter and works independently.

Works with confidential information.

Good analytical and innovative skills

In return, we offer you:

A growth path as an Information Security Engineer with most rewarding career. We also believe that we are at our best as a company when you are at yours as a person. Thus, we offer competitive health benefits, a flexible work schedule and access to local well-being focused activities.

Why should you join Philips?

Working at Philips is more than a job. It’s a calling to create a healthier society through meaningful work, focused on improving 3 billion lives a year by delivering innovative solutions across the health continuum at http://www.philips.com/b-dam/corporate/corporateblog/2016/PhilipsChronicDisease_5.jpg . Our people experience a variety of unexpected moments when their lives and careers come together in meaningful ways. Learn more by watching this video .

To find out more about what it’s like working for Philips at a personal level, visit the Working at Philips page at http://www.philips.com/a-w/careers/healthtech/working-at-philips/working-at-philips.html on our career website, where you can read stories from our employee blog at https://www.philips.com/a-w/asiapac/our-people/life-at-philips.html . Once there, you can also learn about our recruitment process at http://www.philips.com/a-w/careers/healthtech.html , or find answers to some of the frequently asked questions at http://www.philips.com/a-w/careers/healthtech/faq.html