Vacancy expired!
Responsibilities:
- Perform analysis of security requirements specifications and generate corresponding test specifications for a variety of products during design phase.
- Lead and perform execution of security test specifications during verification phase ensuring that the specified security. requirements have been implemented sufficiently.
- Perform other testing activities including pen testing and reverse engineering against embedded hardware and firmware with goals.of identifying implementation flaws
- Communicate complex technical findings, remediation guidance and recommendations effectively both verbally and written to technical and non-technical staff
- Research and stay up to date on new attack vectors, vulnerabilities, and exploitation techniques.
- Lead and participate in small to large-scale individual and matrix-based groups, initiatives, or mentoring others in technical/functional security areas.
- Lead and participate in technology security design reviews with the ability to efficiently communicate potential issues and risks.
- Bachelor's degree (or higher) in Electrical Engineering, Computer Science, Cybersecurity or related is strongly desired.
- Demonstrate a good working knowledge of core security concepts, embedded security best practices (e.g. secure boot, secure, debug, secure storage, secure communications) and the secure development lifecycle activities
- Hands-on experience with designing and testing of the core embedded security concepts above
- Experience with reverse engineering and binary analysis methods and tools (e.g. IDA Pro, Ghidra)
- Experience with vulnerability analysis using CVSS scoring and CWE types.
- Knowledge of Linux and other embedded operating systems is preferred.
- Proficient in C, C, Python (specifically for writing tools to help tasks)
- Hands-on experience securing Linux, MacOS, Windows and Android operating systems.
- Ability to handle tasks with significant complexity under minimal supervision requiring a high degree of technical competence.
- Experience with on-board communication interfaces such JTAG, SPI, UART, and SWD