Cybersecurity test engineer
(网络安全测试工程师)
Bosch Global Business Service Division
Location: Shanghai

Global Business Services is a Bosch service unit providing end 2 end process services to Bosch internal organization. GS/TE the tecnical enabling team of GS, we’re the engine of GS digital transformation by leading and implementing smart automation, UX design, data analytics, digital initiatives, IT application goverancne and IT portfolio, investment management. GS/TET-APAC is the regional organization of GE/TE. With competences and capacities located in the APAC, we work together with our business partners to escort, capture, conceptualize, implement and operation digital initiatives in order to capitalize the power of digital innovation. We drive and lead the GS regional cross functional digital initiative incubation, project implementation, platform rollout and design of digital business models

Major responsibilities:
61 Conduct cybersecurity testing and vulnerability assessment for hardware devices (e.g., IoT devices, embedded systems) and software system (e.g., web application, cloud service)
61 Conduct penetration testing across multiple layers, including network, application, wireless, and hardware security, and provide detailed reports
61 Assess risks associated with identified vulnerabilities and compile comprehensive penetration test reports.
61 Present findings to stakeholders and technical teams, explaining testing methodologies, procedures, and vulnerability severity from a technical perspective.
61 Research and evaluate emerging security trends and industry best practices.
61 Prepare security test documentation and vulnerability reports
Preferred Background & Skills:
61 Education: BS in Computer Science, Computer Engineering, Information Security, or equivalent practical experience.
61 Cybersecurity Expertise: Familiarity with fundamental security concepts, including but not limited to cryptography, authentication mechanisms, secure coding practices, and access control models, embedded system security, secure boot mechanisms etc.
61 Security Testing Expertise: Proficiency in common vulnerability exploitation (e.g., SQL injection, XSS, RCE, buffer overflow), reverse engineering, and exploit development.
61 Tools & Technologies: Familiarity with common security testing tools (e.g., Kali Linux, Burp Suite).
61 Programming Skills: Solid in Python, C/C++, Shell or other language for security testing and scripting.
61 Communication Skills: Strong written and verbal English proficiency.
61 Certifications (Preferred): OSCP or equivalent security certifications.