Overview
Are you a cybersecurity expert passionate about securing connected products in a rapidly evolving digital landscape?
We’re looking for a Subject Matter Expert (SME) – Product Cybersecurity to lead compliance testing and evaluation of consumer, industrial, and medical IoT devices. This is a pivotal role that blends hands-on testing, standards interpretation, and technical leadership—helping organisations bring secure, compliant products to market while shaping the future of connected device security.
Key Responsibilities
* Act as the technical authority for product cybersecurity compliance and assurance.
* Lead and support cybersecurity testing of IoT products across consumer, industrial, and healthcare sectors.
* Interpret and apply standards such as ETSI EN 303 645, ETSI TS 103 701, RED EN 18031, IEC 62443, UL 2900, and OWASP.
* Develop and refine test methods, tools, and automated reporting for connected product evaluations.
* Guide internal teams and clients through security assessments, findings interpretation, and compliance resolution.
* Research and evaluate new tools and methodologies for advanced threat simulation and analysis.
* Maintain relevant technical certifications (e.g. CREST CPSA) and ensure testing/reporting meets operational and accreditation requirements.
Skills & Experience Required
* 5+ years of hands-on cybersecurity testing for IoT or connected devices.
* Expertise in global IoT cybersecurity standards and compliance practices.
* Strong knowledge of microcontrollers (STM32, ESP32), RTOS, and wireless protocols (Zigbee, Bluetooth, Wi-Fi, Cellular, LoRaWAN).
* Experience working with debugging interfaces (UART, JTAG, SPI, I2C).
* Proficiency with security tools (e.g. Nmap, Burp Suite, Wireshark, Nessus).
* Solid programming foundation (Python, C/C++, Java, or similar).
* Degree in Cybersecurity, Computer/Electrical/Electronic Engineering, Telecommunications, or IT.
Preferred
* Previous experience as a Product Cybersecurity SME within the Testing, Inspection, Certification (TIC) industry.
* Familiarity with custom firmware/hardware and IoT architecture principles.
* Relevant certifications such as CREST CPSA (or willingness to obtain).