Firmware Security Analyst
As a Firmware Security Analyst at Fluke, you will ensure that security is embedded into our product development lifecycle across all firmware projects. Working closely with global development and DevOps teams, you will enforce Fluke’s security development policies, ensuring that security is built into the firmware development process from the start. In this role, you’ll help automate security testing, establish and track security requirements, and work cross-functionally to prioritize remediation efforts. Additionally, you will play an essential role in incident response efforts, providing expertise on security incidents related to firmware.
The Firmware Security Analyst will report to Fluke’s CISO and work closely with the Product Security Lead. This role is based out of our Bangalaru, India office.
Responsibilities:
• SDL Policy Adherence: Ensure that all firmware development processes align with Fluke’s SDL (Security Development Lifecycle) policy, actively embedding security best practices throughout development.
• Cross-Functional Security Collaboration: Partner with global development teams to integrate security as an inherent part of the product design, development, and testing process.
• Automate Security Scans: Collaborate with DevOps to automate security scans and testing, ensuring that vulnerabilities are identified and addressed in a timely manner.
• Establish Security Requirements: Define security requirements for firmware projects, helping development teams understand and implement required security measures.
• Prioritize and Track Remediations: Work with development teams to prioritize vulnerability remediation based on risk, compliance needs, and product impact, and track resolution progress to ensure timely closure.
• Incident Response Participation: Act as a critical member of the incident response team, providing firmware security expertise to investigate, contain, and resolve security incidents.
• Compliance and Reporting: Track and report on compliance with the SDL, documenting adherence and improvements over time, and contribute to periodic security posture reports for management.
Qualifications and Experience:
Skills and Work Traits
• Strong understanding of firmware development processes and secure development lifecycle (SDL) principles.
• Experience with automated security scanning tools, particularly for firmware (e.g., Binwalk, Firmware Analysis Toolkit, static and dynamic analysis tools).
• Familiarity with DevOps practices and tools used to integrate security testing into CI/CD pipelines.
• Proven ability to work cross-functionally with global, remote teams and influence security adoption within development cycles.
• Effective communication skills for conveying complex security requirements and collaborating across teams.
• Detail-oriented with an analytical approach to prioritizing, managing, and remediating vulnerabilities.
• Experience participating in incident response efforts, particularly in the context of firmware or embedded systems.
Education
• B.S. Degree in Cybersecurity, Computer Engineering, or a related field, or equivalent work experience.
• Industry certifications such as Certified Ethical Hacker (CEH), GIAC Security Essentials (GSEC), or working towards similar credentials (preferred).
This position is ideal for someone with a proactive approach to firmware security and experience in secure development practices, looking to make an impact within Fluke’s global product security framework.
Fortive Corporation Overview
Fortive’s essential technology makes the world stronger, safer, and smarter. We accelerate transformation across a broad range of applications including environmental, health and safety compliance, industrial condition monitoring, next-generation product design, and healthcare safety solutions.
We are a global industrial technology innovator with a startup spirit. Our forward-looking companies lead the way in software-powered workflow solutions, data-driven intelligence, AI-powered automation, and other disruptive technologies. We’re a force for progress, working alongside our customers and partners to solve challenges on a global scale, from workplace safety in the most demanding conditions to groundbreaking sustainability solutions.
We are a diverse team 18,000 strong, united by a dynamic, inclusive culture and energized by limitless learning and growth. We use the proven Fortive Business System (FBS) to accelerate our positive impact.
At Fortive, we believe in you. We believe in your potential—your ability to learn, grow, and make a difference.
At Fortive, we believe in us. We believe in the power of people working together to solve problems no one could solve alone.