Penetration Tester

Job Description

As the tech firm that created the mobile world, and with more than 54,000 patents to our name, we’ve made it our business to make a mark. When joining our team at Ericsson you are empowered to learn, lead and perform at your best, shaping the future of technology. This is a place where you're welcomed as your own perfectly unique self, and celebrated for the skills, talent, and perspective you bring to the team. Are you in?

Come, and be where it begins.

Our Exciting Opportunity!

The Research and Development center in Ericsson France is now recruiting a Penetration Tester to be based in Massy, France. The ideal candidate will undertake various activities to analyse the security of Ericsson's Digital Services portfolio, including White/Black box testing, penetration tests, perform security checks and analyses reports. A key responsibility of this role will be capacity to use the output of various activities as an input towards the development and service delivery units. In addition, the successful candidate will be responsible for suggesting improvements to our products, product development processes and standard methodologies. You should be comfortable working both on individual tasks, but also as part of a team, depending on the different needs of the Security Centre.

You will:

• Assess the security posture, from both a technical and human perspective, of BDGS's portfolio
• Propose improvements to Ericsson's Products and Processes
• Collaborate with units across Ericsson, including Product Security Incident Response Team, IT Security and Group Security on different activities
• Manage of third-party testing companies as required
• Verify and validate reports from PDUs, Customers and Regulators

To be successful in the role you must have:

• 3 years of experience working with security audits and penetration testing.
• Deep technical understanding of vulnerabilities and technology in security risks and vulnerabilities.
• Programming and scripting knowledge and experience.
• Ability to detail and explain vulnerabilities and exploits that are discovered during test, through written reports or presentations to varying audiences.
• Experience with Windows and *nix platforms, along with virtualization and containers.
• Knowledge of different frameworks, including OWASP, SANS, MITRE etc.
• Highly skilled in industry security standard methodologies, processes and requirements.
• Proficient in English, French is a plus
• Certifications in OSCE/OSCP/CEH are a benefit, equivalent experience is also considered.
• Participation in CTF’s would be an advantage.

Are you the one!

Please submit your CV in English What ́s in it for you

Here at Ericsson, our culture is built on over a century of fearless decisions. With us, you will no longer be dreaming of what the future holds – you will be redefining it. You won’t develop for the status quo, but will build what replaces it. Joining us is a way to move your career in any direction you want; with hundreds of career opportunities in locations all over the world. You will find yourself in a speak-up environment where empathy and humanness serve as cornerstones for how we work, and where work-life balance is a priority. Welcome to an inclusive, global company where your chance to create an impact is endless.

What happens once you apply?

To prepare yourself for next steps, please explore here: https://www.ericsson.com/en/careers/job-opportunities/hiring-process

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Do you believe that an organization fostering an environment of cooperation and collaboration to execute with speed creates better business value? Do you value a culture of humanness, where fact based decisions are important and our people are encouraged to speak up? Do you believe that diverse, inclusive teams drive performance and innovation? At Ericsson, we do.

We provide equal employment opportunities without regard to race, color, gender, sexual orientation, transgender status, gender identity and/or expression, marital status, pregnancy, parental status, religion, political opinion, nationality, ethnic background, social origin, social status, indigenous status, disability, age, union membership or employee representation and any other characteristic protected by local law or Ericsson’s Code of Business Ethics.