eInfochips
IndustrialCybersecurityEngineer-Embedded/DevSecops
Neural analysis suggests this role is
optimal for Senior candidates.
“Industrial Cybersecurity Engineer - Embedded/DevSecops at eInfochips. Skills: Industrial Cybersecurity, Embedded Security, DevSecOps, Vulnerability Assessment. Conduct vulnerability assessments. Coordinate penetration testing activities”
Industry & Context.
Risk analysis; Threat modeling; Incident investigation; Root cause analysis; Remediation actions; Secure design principles; Mitigation strategies; Identify security vulnerabilities
What They're Looking For.
Must Have
Minimum 5 years of experience in industrial cybersecurity or IT/OT security, Engineering degree or equivalent experience in Software Engineering, Computer Science, or Cybersecurity, Programming skills in C and C++, Solid understanding of encryption algorithms, key management, and secure protocols, Knowledge of common software vulnerabilities including OWASP Top 10 and CWE/SANS Top 25, Familiarity with Linux, Windows, RTOS environments, Familiarity with network protocols such as TCP/IP, DNS, and HTTPS, Understanding of industrial communication protocols including Serial, Modbus, and HART, Familiarity with cybersecurity frameworks and standards such as IEC 62443, ISO 27001, NIST, and OWASP, Experience working with Software Bill of Materials (SBOM)
Nice to Have
Experience implementing DevSecOps practices, Hands-on experience with Azure DevOps or similar CI/CD platforms
What You'll Do.
Conduct vulnerability assessments
Coordinate penetration testing activities
Perform risk analysis
Support secure system architecture reviews
Support threat modeling initiatives
Enforce organizational security policies
Enforce security standards
Enforce security procedures
Investigate security incidents
Lead root cause analysis
Lead remediation actions
Ensure alignment with standards
Support cybersecurity compliance initiatives
Maintain security documentation
Maintain security playbooks
Maintain incident response plans
Ensure secure design principles are applied
Validate secure implementation of requirements
Validate mitigation strategies
Perform security testing on firmware releases
Apply Static Code Analysis techniques
Identify security vulnerabilities in code
Conduct Software Composition Analysis
Support software supply chain security
Participate in unit testing
Participate in secure code reviews
Continuously improve security practices
Stay informed on emerging threats
Stay informed on emerging tools
Stay informed on industry practices
Collaborate with DevOps teams
Collaborate with engineering teams
Integrate security practices within CI/CD pipelines
How You'll Work.
Team & Collaboration
Collaborative team environment; DevOps teams; Engineering teams
Full Job Description
# **Position:** Industrial Cybersecurity Engineer - Embedded/DevSecops # **Job Description:** Key Responsibilities • Conduct vulnerability assessments, coordinate penetration testing activities, and perform risk analysis. • Support secure system architecture reviews and threat modeling initiatives. • Enforce organizational security policies, standards, and procedures. • Investigate security incidents and lead root cause analysis along with remediation actions. • Ensure alignment with relevant standards such as IEC 62443, EN18031, and ISO 27001. • Support cybersecurity compliance initiatives including IEC 62443, EU CRA, ISO 27001, and NIST frameworks. • Maintain security documentation, playbooks, and incident response plans. • Ensure secure design principles are applied, including least privilege, defense in depth, and secure defaults. • Validate secure implementation of requirements and mitigation strategies. • Perform security testing on firmware releases from development teams. • Apply Static Code Analysis techniques to identify security vulnerabilities in code. • Conduct Software Composition Analysis to support software supply chain security. • Participate in unit testing and secure code reviews. • Continuously improve security practices by staying informed on emerging threats, tools, and industry practices. • Collaborate with DevOps and engineering teams to integrate security practices within CI/CD pipelines. Required Qualifications • Minimum 5 years of experience in industrial cybersecurity or IT/OT security environments. • Engineering degree or equivalent experience in Software Engineering, Computer Science, or Cybersecurity. • Strong programming skills in C and C++. • Solid understanding of encryption algorithms, key management, and secure protocols such as TLS and SSH. • Knowledge of common software vulnerabilities including OWASP Top 10 and CWE/SANS Top 25. • Familiarity with Linux, Windows, RTOS environments, and network protocols such as TCP/IP, DNS, and
Applying for this Industrial Cybersecurity Engineer - Embedded/DevSecops role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about eInfochips?
Real rants from real employees. Read before you apply.