Vacant job

Veritaz is a leading IT staffing solutions provider in Sweden, committed to advancing individual careers and aiding employers in ensuring the perfect talent fit. With a proven track record of successful partnerships with top companies, we have rapidly grown our presence in the USA, Europe, and Sweden as a dependable and trusted resource within the IT industry.

Assignment Description

We are looking for a Product Cybersecurity Verification & Validation Engineer.

What You Will Work On

• Executing product cybersecurity verification and validation according to IEC 62443
• Managing the full lifecycle of PSAC security testing requests
• Reviewing products for security testing readiness and compliance requirements
• Performing vulnerability scanning, penetration testing, and security assessments
• Conducting network, web, mobile, API, and embedded security testing
• Performing SAST and DAST analysis
• Testing industrial communication protocols and protocol stack robustness
• Conducting hands-on security testing in the PSAC laboratory environment
• Performing vulnerability analysis and assessing security findings
• Creating detailed security test reports with actionable recommendations
• Researching and developing new security test methodologies for emerging technologies
• Supporting security requirement testing and threat mitigation activities
• Collaborating with global development teams on security improvements

What You Bring

• Bachelor’s or Master’s degree in Cybersecurity, Computer Engineering, or a related field
• 5+ years of hands-on experience in security testing, penetration testing, or vulnerability assessment
• Strong knowledge of TCP/IP networking and application protocols
• Experience with industrial control and embedded systems security
• Proficiency with security testing tools (vulnerability scanners, pen-testing frameworks, SAST/DAST tools)
• Strong understanding of OWASP Top 10 and SANS Top 25 vulnerabilities
• Knowledge of industrial protocols such as EtherNet/IP, PROFINET, and OPC UA
• Experience with cryptographic protocols including SSL/TLS
• Programming or scripting skills for security test automation
• Strong technical writing and documentation skills
• Ability to work independently and collaboratively in cross-functional teams
• Fluency in English, both written and spoken
• Knowledge of IEC 62443 standards is a strong advantage
• Security certifications are meritorious
• Curiosity and passion for emerging cybersecurity technologies and attack techniques
• Experience with hardware exploitation, side-channel analysis, or IoT/OT security is a plus