Penetration Tester, Embedded Devices

About Us:

Headquartered in the United States, TP-Link Systems Inc. is a global provider of reliable networking devices and smart home products, consistently ranked as the world’s top provider of Wi-Fi devices. The company is committed to delivering innovative products that enhance people’s lives through faster, more reliable connectivity. With a commitment to excellence, TP-Link Systems serves customers in over 170 countries and continues to grow its global footprint.

We believe technology changes the world for the better! At TP-Link Systems Inc, we are committed to crafting dependable, high-performance products to connect users worldwide with the wonders of technology.

Embracing professionalism, innovation, excellence, and simplicity, we aim to assist our clients in achieving remarkable global performance and enable consumers to enjoy a seamless, effortless lifestyle.

Overview:

TP-Link Systems Inc. is seeking a skilled and proactive Penetration Testing Engineer, Embedded Devices to support our embedded product projects under the guidance of senior team members. This role is designed for candidates with a foundational technical background in cybersecurity, particularly in embedded devices. Under the mentorship of senior engineers, the successful candidate will be involved in a range of security activities for a single product category, including penetration testing, threat modeling and security assessment for specific modules, contributing to investigation, risk assessment and verification for incident response.

The ideal candidate is eager to learn, capable of working within defined boundaries, and driven to enhance the security of TP-Link’s embedded devices.

Key Responsibilities:

• Penetration Testing: Perform penetration testing on embedded products to identify vulnerabilities. Provide remediation recommendations and write detailed penetration test reports.
• Threat Modelling and security assessment: Perform threat modeling to identify and evaluate potential risks for specific modules.
• Incident Response and Vulnerability Management: Responsible for specific area’s incident response, including investigation, containment, remediation, and post-incident analysis. Coordinate with cross-functional teams to ensure effective resolution.
• Product cybersecurity certification: Analyze specific product security certification requirements and collaborate with cross-functional teams to achieve product security certification.
• Develop security tools: Assist in developing various pen-testing tools, automated testing platforms, and scripts to enhance testing efficiency and accuracy.
• SDLC Integration: Participate in the development and improvement of the company's SDLC processes, ensuring security considerations are embedded during development.
• Interpret global cybersecurity standards and regulatory requirements, supporting implementation of security requirements.

Requirements

Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent work experience).
• Proven 1-3 years’ experience as a Security Engineer (Embedded devices) or in a similar role.
• Strong knowledge of protocol security design, cryptography, security frameworks and common vulnerabilities.
• Experience with security tools such as Burpsuite, Nmap, Kali, Nessus, Metasploit, IDA, Ghidra, etc.
• Capability to optimize penetration testing tools and Fuzzing strategies.
• Ability to analyze SAST results, conduct basic reverse engineering.
• Proficient in at least one programming language (e.g., C/C++, Python, Bash, or PowerShell).
• Relevant advanced security certifications (e.g., OSWP, etc.) are highly preferred.
• Published CVEs are highly preferred.

Soft Skills:

• Strong communication and interpersonal skills. Ability to work independently as well as collaborate with cross-functional teams.
• Strong willingness to learn, able to work under guidance and take constructive feedback.
• Team-oriented mindset, with the ability to follow technical direction and contribute constructively to group tasks.

Benefits

• Salary range: $80,000-$132,000
• Free snacks and drinks, and provided lunch on Fridays
• Fully paid medical, dental, and vision insurance (partial coverage for dependents)
• Contributions to 401k funds
• Bi-annual reviews, and annual pay increases
• Health and wellness benefits, including free gym membership

Quarterly Team-Building Events

At TP-Link Systems Inc., we are continually searching for ambitious individuals who are passionate about their work. We believe that diversity fuels innovation, collaboration, and drives our entrepreneurial spirit. As a global company, we highly value diverse perspectives and are committed to cultivating an environment where all voices are heard, respected, and valued. We are dedicated to providing equal employment opportunities to all employees and applicants, and we prohibit discrimination and harassment of any kind based on race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. Beyond compliance, we strive to create a supportive and growth-oriented workplace for everyone. If you share our passion and connection to this mission, we welcome you to apply and join us in building a vibrant and inclusive team at TP-Link Systems Inc.

Please, no third-party agency inquiries, and we are unable to offer visa sponsorships at this time.