EY Experienced Penetration Tester Expertise 

Israel, Tel Aviv District, Tel Aviv-Yafo 

266493116

Position Overview:

As a Pentester with expertise in IoT security, you will play a crucial role in identifying and addressing potential vulnerabilities in pentesting IoT projects and medical devices. The ideal candidate will have a minimum of 2 years of hands-on experience in penetration testing and a background in pentesting IoT devices.

Responsibilities:

Conduct comprehensive penetration tests on different types of system and technologies, with a specific emphasis on IoT devices.

Identify and exploit security vulnerabilities on thick client/mobile applications and also on products like IoT or medical devices.

Assess the security of embedded systems, firmware, and IoT protocols.

Provide detailed reports and recommendations for mitigating identified risks, especially in the IoT context.

Stay up-to-date with the latest cybersecurity trends and threat landscapes, particularly in the rapidly evolving IoT domain.

Requirements:

Minimum of 2 years of proven experience in penetration testing (Web, Mobile, Thick Client).

Minimum of 1 year of Reverse engineering, using tools like IDA, Ghidra, Qemu.

In-depth knowledge of IoT security protocols, standards, and best practices.

Hands-on experience with Penetration testing on IoT devices, including embedded systems and firmware.

Familiarity with common IoT communication hardware protocols (e.g., SPI, UART) and Radio Frequencies (e.g. WiFi, BLE, Zigbee).

Understanding of hardware security considerations in IoT devices.

Knowledge of IoT-specific vulnerabilities and attack vectors.