Senior Product Security Analyst

Job ID 2023-3536
Category
Engineering
Job Locations
US-IL-Niles
Workplace Arrangement
Hybrid

Overview

We are searching for an Embedded IoT Security Analyst to join our forward-thinking Product Security team!

 

Our ideal candidate is a precision-focused expert with a comprehensive understanding of IoT and Cloud security. In this role, you'll partner with our development teams, sharpening the security of our products by conducting thorough tests, delivering actionable assessments, and crafting effective remediation strategies. A hands-on role, you'll interact with our hardware and software products, uncovering vulnerabilities and strengthening defenses. This is your chance to work on the front lines of technology, securing the future of IoT.

 

Are you ready to push boundaries and disrupt norms? Your exciting tech journey starts here!

 

This role is based in Niles, IL 3 days a week. 

Responsibilities

  • Develop product-based rules of engagement, scenarios, standard operating processes, test plans, and scope documentation.
  • Conduct vulnerability assessments of IoT products and systems to identify potential security weaknesses.
  • Execute penetration tests to simulate real-world attacks and evaluate the robustness of IoT/embedded products and systems.
  • Provide detailed reports and recommendations for improving the security of IoT products, including risk assessments and mitigation strategies.
  • Manage security test lab including day-to-day activities, regular maintenance, documentation, component installation and configuration, as well as facility evolution.
  • Contributes/recommends new tools for assessment, penetration testing, and secure product validation. Provides solutions to automate testing and scanning.
  • Continually research emerging security technologies, trends, tactics, and exploits. Prepares reports and/or presentations periodically for management and developers.
  • Contribute to developing assessment plans building on methodologies promoted by NIST, ISO, and other frameworks creating useful, measurable, and repeatable methods to quantify risk.
  • Collaborate with the development team to integrate security measures into the design and development of IoT products.
  • Provide training and guidance to other team members regarding security best practices and potential threats.
  • Perform ad hoc security research as time permits
  • Other duties as assigned.

 

Qualifications

  • Bachelor’s degree in Computer Science, IT security, or related field and 5 years of relevant work experience as a product security analyst or penetration tester or 8 years of relevant work experience as a product security analyst or penetration tester
  • Proven experience as a Security Analyst or a related position working with IoT and embedded hardware products
  • Comprehensive understanding of IoT architecture, protocols, and standards.
  • Proficient in various security frameworks, tools, and techniques.
  • Experience with commercial and open-source security tools required (e.g. Kali, Nessus, HP Fortify, IBM AppScan, Nexpose, SAINT, Qualys, Burp, NMap, SemGrep, Emba, Metasploit, Meterpreter, Wireshark, Kismet, Aircrack-ng, etc.)
  • Strong understanding of network security protocols, data encryption, and secure coding practices.
  • Exceptional problem-solving skills, analytical mind, and attention to detail.
  • Strong written and verbal communication skills.
  • Relevant professional certification, such CompTIA PenTest+, Certified Ethical Hacker (CEH) Certification, GIAC Penetration Tester (GPEN), or equivalent would be advantageous.
  • DevSecOps experience (especially with Jenkins build systems and JFrog tools) a plus.
  • Experience with Amazon AWS a plus.

WHO WE ARE
Shure’s mission is to be the most trusted audio brand worldwide – and for nearly a century, our Core Values have aligned us to be just that. Founded in 1925, we are a leading global manufacturer of audio equipment known for quality, reliability, and durability. We engineer microphones, headphones, wireless audio systems, conferencing systems, and more. And quality doesn’t stop at our products. Our talented teams strive for perfection and innovate every chance they get. We offer an Associate-first culture, flexible work arrangements, and opportunity for all.

 

Shure Incorporated is headquartered in Niles, Illinois, with remote and hybrid opportunities throughout the United States. We have more than 35 regional sales offices, engineering hubs, and manufacturing facilities throughout the Americas, EMEA, and Asia.

 

THE MIX MATTERS
Don’t check off every box in the job requirements? No problem! We recognize that every professional journey is unique and are committed to providing an equitable candidate experience for all prospective Shure Associates. If you’re excited about this role, believe you’ve got the skills to be successful, and share our passion for creating an inclusive, diverse, equitable, and accessible work environment, then apply!

 

WE GOT YOU - Our Benefits

At Shure, we prioritize the well-being of our associates. We offer competitive rewards packages that address physical, mental, financial, and overall well-being. Our benefits include retirement savings plans, generous paid time off programs, employee discounts, professional development opportunities, work-life balance initiatives, employee recognition programs, commuter benefits, employee assistance programs, and volunteering/community involvement opportunities. To learn more, visit our careers page at www.shure.com/careers.

 

#LI-HYBRID

 

IND123

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed