Security Analyst / Product Security Engineer (Software) (m/f/d)Advantest Europe GmbH • Böblingen, Baden-Württemberg, Germany
This job offer is no longer available
Security Analyst / Product Security Engineer (Software) (m/f/d)
Advantest Europe GmbH
- Böblingen, Baden-Württemberg, Germany
- Böblingen, Baden-Württemberg, Germany
About
tomorrowʻs technology.
IoT, 5G and Artificial Intelligence. Unthinkable without us. More than half of all the microchips produced worldwide first pass through our hands. As the global market leader of automated test systems in the semiconductor industry we help the world to realize the digital transformation, enable our customers to shape the future and offer you the exciting jobs intended for pioneers.
Are you seeking answers and opportunities for your future? At our site in Böblingen you will find both as
Security Analyst / Product Security Engineer (Software) (m/f/d)
Your Responsibilities
Define and maintain the security architecture of the tester software platform, primarily focusing on Linux workstation software.
Translate Cyber Resilience Act (CRA) essential cybersecurity requirements into concrete software development practices and product requirements.
Perform threat modeling and security risk analysis for the software architecture, interfaces, and external integrations.
Identify and analyze security vulnerabilities in the software stack (C++, Java, Linux environment).
Establish and maintain secure development practices, including:
secure coding guidelines
security-focused code reviews
use of static and dependency security analysis tools
Monitor security advisories and vulnerability databases (e.g. CVEs) for third-party libraries, Linux components, and external dependencies used by the product.
Investigate reported vulnerabilities or security incidents affecting the software and coordinate root cause analysis and remediation with development teams.
Define and maintain processes for vulnerability handling and disclosure, including tracking, prioritization, and remediation.
Support development teams in implementing security controls, such as:
authentication and authorization mechanisms
secure use of cryptographic functions
protection against common software vulnerabilities
Define requirements and concepts for secure software updates and software integrity protection.
Contribute to security documentation required for CRA compliance, including risk assessments and security-related product documentation.
Act as security advisor for development teams, helping them design and implement secure solutions.
Assess security implications of executing customer-provided test programs and define safeguards such as sandboxing, permissions, or execution isolation.
Your Qualifications
Software Security:
Strong understanding of secure software design and architecture
Experience with secure development practices for large software systems
Knowledge of common software vulnerabilities and mitigation techniques (e.g. OWASP Top 10, memory safety issues)
Familiarity with security aspects of C++ and Java development
Understanding of Linux operating system security concepts
Security Engineering:
Experience with threat modeling and security risk analysis
Familiarity with security testing techniques, such as static analysis, dependency scanning, and vulnerability analysis
Ability to analyze vulnerability reports and determine product impact
Experience with investigating software defects and root causes
Standards and Compliance:
Understanding of Cyber Resilience Act (CRA) requirements for software products
Knowledge of secure development lifecycle (SDL) practices
Familiarity with industry security standards and guidelines (e.g. OWASP, NIST, ISO/IEC security practices)
Collaboration
Ability to work closely with software architects and development teams
Ability to translate security and regulatory requirements into practical development guidelines
Strong analytical and problem-solving skills
Ability to communicate security risks and recommendations clearly
Our offer
Flexibility
Benefits
Development
Fitness
Security
Flexible and trust-based working hours, 30 vacation days + option for additional vacation days, mobile working, individual part-time models and programs for extended periods of absence
Attractive salary, share in Advantest´s success through our exceptionally appealing bonus program as well as numerous subsidies, discounts and offerings (e.g. bike leasing)
Structured onboarding programs and mentoring, development discussions, technical and soft skill trainings, language courses and knowledge sessions
Ergonomic working environment, sports and fitness options and events (e.g. Global Challenge) as well as health days
Attractive company pension scheme, comprehensive insurance coverage and support in emergency situations
Take your next career step with us! Apply now, preferably via our online application tool.
If you have any questions, Alena Nicolai will be happy to answer them at
+49 (0)
For further information visit: now
Would you like to know more about jobs at Advantest and about our unique team spirit? Our employees offer you their personal insights into our working environment.
Would you like to take a closer look how our working environment looks like? Here you can take a short virtual 360° tour of our company - click the link to get to know us better.
Böblingen
Amerang
Languages
- English
Notice for Users
This job was posted by one of our partners. You can view the original job source here.