This job posting isn't available in all website languages

Software security analysis jobs

Testing & Laboratory
044292 Requisition #
Apply for Job
Recommend to a Friend
Sign Up for Job Alerts


Is Information security something you find fascinating? Has hacking devices always been something you were eager to learn? Are you passionate about the security of electronic products and systems?

SGS’s DTS (Digital Trust Services) is expanding its Graz Cyberlab to provide clients with security certification on their products and systems and ensure the security functionality and robustness of product designs. SGS’s Cybersecurity services also cover data integrity, organization certification, and network and infrastructure security. The Secure Product and Systems unit focuses on Software and Hardware design.


We are searching for the following experts or future experts to join our team:


•             Embedded Software Security Expert

In order to assess the security of electronic products and systems, a broad variety of tests have to be conducted depending on the nature, the security level, the operational environment, and the analysis of the potential vulnerabilities of the evaluated device.

The Embedded Software Security Expert should have profound knowledge of the typical potential flaws of such devices and perform code and design reviews and assess the security and the robustness of the implementation. The expert will also develop new tools, and enhance and automatize existing ones and participate in assessment teams for complex products.


•             Security Evaluator

A Security Evaluator knows the according standards to evaluate products against and what is required to proove the compliance to those standards. This expert has deep technical understanding of the evaluated products and can establish a vulnerability assessment and test plans of the product under test. 

•             Embedded Software / Software Engineer

The embedded software engineer will design, develop and implement custom tools based on the needs defined by the Security Experts and support the operation of the tests and tailoring the test software to the actual setup.


•             Penetration Tester

Testing the connectivity part and the software layer is the responsibility of the Penetration Tester. This expert will perform network penetration, web and mobile and web application testing, source code reviews, threat analysis, wireless network assessments, and social-engineering assessments for those products and systems. The penetration tester is furthermore developing scripts, tools, or methodologies to facilitate customized testing.

Senior Penetration Testers are OSCP certified and should  have experience driving cybersecurity audits and penetration testing in enterprise environments, Web applications pentesting / cybersecurity assessment, experience of IT Networks security assessment, Enterprise network pentesting / cybersecurity assessment, Sound experience with Acunetix, OpenVAS, Nessus and Metasploit is required.


You don’t feel you are an expert yet?

If you are passionate about one of the above-mentioned thematics? We will train you to become an expert! 


You could come from an embedded Software design background and possibly possess experience in designing embedded Software for mobile applications (e.g, iOS, Android). You will also understand the security flaws of embedded Software. And could have worked in one of the following roles:


You could also have experience as an: 
  • Test Engineer
  • Physicist
  • QA Engineer
  • Cryptographer
  • Test Automation Engineer
  • Data Analyst
  • Security Analyst, Evaluator or architect.     
  • Software engineer or developer

We are looking for the following skills:
  • test automation
  • mathematics
  • statistics
  • physics
  • electronic measurement
  • electromagnetic measurement
  • electronics
  • semiconductor development
  • mobile software development
  • Cryptography
  • hardware security
  • side-channel analysis
  • fault injection
  • System security
  • Security architecture
  • security certification & evaluation
  • network and cloud security
  • java card security
  • automotive security
  • IoT security 
  • Common criteria
  • EMVCo
These positions will be based at our Cyber Lab in Graz, southern Austria.



Similar Listings


📁 Testing & Laboratory

Requisition #: 044295

Visit www.sgs.com