In This Role, Your Responsibilities Will Be:

• Work as per the direction from BU Product Security Officer / Lead.
• Create security test plan and associated test artefacts to support BU Product Certification efforts.
• Own Security Verification and Validation activity for all products and execute the tests below for every major and minor release:
• Security requirement testing
• Threat Mitigation testing
• Static Code Analysis
• Attack surface analysis
• Software composition analysis
• Coordinate with independent penetration test team (GCC) for:
• Abuse case / Fuzz testing
• Known Vulnerability scanning
• Penetration test
• PSIRT specific test
• Support development team for validating fixes prior to sharing build with independent penetration test team.
• Collaborate with Product Security engineer for handling PSIRT and vulnerability management activities.
• Generate Project Metrics as per EIC-Pune and / or Business Unit Guidelines
• Report Local Manager for All the activities
• Contribute to EIC-Pune Assigned Initiatives
• Should be able to work in Engineering Laboratory for Product & System Level Testing following Safety Practices & Guidelines.

Who You Are:

• As a Product Security Verification and Validation Engineer, you are proficient in threat modeling, risk assessment, and integrating security validation into CI/CD pipelines while ensuring compliance with industry cybersecurity standards. You ensure embedded products are resilient against real-world attacks while meeting regulatory and industry cybersecurity standards.

For This Role, You Will Need:

• Bachelor's degree and/or equivalent years of relative experience.
• 3-5 years of experience and familiarity with product security standards and initiatives or practical work experience related to the verification and validation of products, services, and solutions.
• Knowledge of cybersecurity standards and frameworks (IEC 62443, ISO 27001, NIST, OWASP).
• Familiarity with risk assessment methodologies and CVSS scoring.
• Experience in industrial control systems (ICS), embedded systems, or network security is preferred.
• Experience in secure by design principles, best practices and the integration of security into preexisting development practices.
• Familiar with concepts such as secure development lifecycle, secure by design, and defense in depth.
• Familiar with Microsoft Office tools for effective communications and information management.
• Ability to organize, prepare and make compelling presentations.
• Self-motivated and able to work under tight timeline.
• Strong problem solving / interaction management skills.
• Strong organizational and collaboration skills.
• Respect Company’s Values and Ethics.

Preferred Qualifications That Set You Apart:

• Master’s degree or equivalent experience in electronics engineering or related field.
• Familiarity with penetration testing tools (e.g., Metasploit, Wireshark, Burp Suite).
• Familiarity with hardware design and debugging.
• Understanding of network protocols (TCP/IP, HTTPS, SSH, SNMP, OPC-UA, MQTT).
• Understanding of firewalls, IDS/IPS, endpoint security, and access control systems.
• Experience with secure coding practices and code review processes.
• Prior experience in the industrial/ factory automation or control systems industry.

Our Culture & Commitment to You:

• At Emerson, we are committed to fostering a culture where every employee is valued and respected for their unique experiences and perspectives. We believe a diverse and inclusive work environment contributes to the rich exchange of ideas and diversity of thoughts, that inspires innovation and brings the best solutions to our customers.
• This philosophy is fundamental to living our company’s values and our responsibility to leave the world in a better place. Learn more about our Culture & Values and about Diversity, Equity & Inclusion at Emerson.
• If you have a disability and are having difficulty accessing or using this website to apply for a position, please contact: idisability.administrator@emerson.com.