Welcome page Returning Candidate? Log back in! Cybersecurity Test Engineer II Job Locations US-MA-Bedford Job ID 2025-8477 Type Regular Full-Time Shift 1st Category R&D Overview

Position Summary:

Under minimal supervision, as a member of the R&D Software Engineering team at Werfen, this role focuses on both offensive and defensive cybersecurity, as well as operational security. The primary responsibilities include identifying and validating vulnerabilities, mitigating risks, and ensuring compliance with regulatory standards to safeguard critical systems in highly regulated industries using software engineering tools and techniques available.

Responsibilities

 

Essential Functions:

Participates as active member of the project team focusing on analyzing penetration test results, assessing attack patterns and severity, and collaborating with Red or developersProvide actionable remediation guidance to mitigate identified cybersecurity defects and risks.Manage and maintain vulnerability scanning tools, and secure test environments.Conduct fuzz testing to uncover unknown vulnerabilities and escalate critical findings.Reproduce and validate cybersecurity defects in controlled environments.Evaluate, Investigate and resolve cybersecurity issues/ fixes reported by customers, ensuring effective and timely solutions.Produce high-quality technical documentation to support compliance with regulatory standards such as FDA, HIPAA, and ISO 13485.Collaborate with development, IT, and product teams to ensure secure design and implementation of systems and products.Creates/Maintains software (component) design documentation.Creates/Maintains software source code that adheres to design documentation.Performs unit testing and/or code reviews as per project policy.Performs integration testing to ensure software functions within application and with devices.Evaluates, investigates, and implements fixes to assigned software defects.Evaluates, investigates, and implements assigned software change proposals.Provides level of effort for assigned software activities. Tracks personal estimates over time in order to improve accuracy.Follows project and corporate software plans, standards, and procedures.Performs other related duties as assigned

Budget Managed (if applicable):

N/A

Internal Networking/Key Relationships:

To be determined based on department needs

Skills & Capabilities:

Expertise in penetration testing tools (e.g., Nessus, Metasploit, Burp Suite) and fuzzing tools (e.g., Peach, AFL).Familiarity with secure software development lifecycles (SDLC).Familiarity with standards such as FDA, HIPAA, and ISO 13485.Strong technical writing skills for compliance, reporting, and regulatory submissions.Advanced knowledge in exploit chaining and vulnerability analysis.Industry-recognized certifications such as OSCP, CEH, GPEN, or equivalent.Experience with VMware ESXi and virtualized environments desirable.Strong knowledge of Linux systems.Experience in cybersecurity for medical devices or other highly regulated industries.Written and Oral CommunicationsTechnical learningTeamworkManaging and Measuring WorkAbility to use software engineering tools: configuration, requirements, and defect management Ability to operate instrumentationAbility to handle many software components  Qualifications

Minimum Knowledge & Experience Required for the Position:

Associates Degree plus minimum 4 years of related experience or Bachelor's Degree plus a minimum 2 years of related experience or Master's Degree plus typically 1 year of related experience or waiver based on experience.Degree should be in a technical discipline such as Chemistry, Math, Physics, Engineering, or Computer Science.Proficiency with a personal computer and software packages.Programming expertise in Python, Bash, C, or C++.Hands-on expertise in offensive and defensive security and penetration testing methodologies

International Mobility Required:

No

Travel Requirements: 

<5% of time Options Apply for this job onlineApplyShareRefer a friendRefer Sorry the Share function is not working properly at this moment. Please refresh the page and try again later. Share on your newsfeed Application FAQs

Software Powered by iCIMS
www.icims.com