Vacancy caducado!
- Embedded Security Testing Engineer
- In this role candidate will play a pivotal role in shaping the overall cybersecurity posture for Client.
- As an embedded security testing engineer, candidate will be responsible for leading and performing advanced security testing engagements for current and forward-model systems throughout Client's Connected Car ecosystem.
- Perform analysis of security requirements specifications and generate corresponding test specifications for a variety of products during design phase
- Lead and perform execution of security test specifications during verification phase ensuring that the specified security requirements have been implemented sufficiently
- Perform other testing activities including pen testing and reverse engineering against embedded hardware and firmware with goals of identifying implementation flaws
- Communicate complex technical findings, remediation guidance and recommendations effectively both verbally and written to technical and non-technical staff
- Research and stay up to date on new attack vectors, vulnerabilities, and exploitation techniques
- Lead and participate in small to large-scale individual and matrix-based groups, initiatives, or mentoring others in technical/functional security areas
- Lead and participate in technology security design reviews with the ability to efficiently communicate potential issues and risks
- Bachelor's degree (or higher) in Electrical Engineering, Computer Science, Cybersecurity or related is strongly desired
- Demonstrate a good working knowledge of core security concepts, embedded security best practices (e.g. secure boot, secure debug, secure storage, secure communications) and the secure development lifecycle activities
- Hands-on experience with designing and testing of the core embedded security concepts above
- Experience with reverse engineering and binary analysis methods and tools (e.g. IDA Pro, Ghidra)
- Experience with vulnerability analysis using CVSS scoring and CWE types
- Knowledge of Linux and other embedded operating systems is preferred
- Proficient in C, C, Python (specifically for writing tools to help tasks)
- Hands-on experience securing Linux, MacOS, Windows and Android operating systems
- Ability to handle tasks with significant complexity under minimal supervision requiring a high degree of technical competence
- Experience with on-board communication interfaces such JTAG, SPI, UART, and SWD
- Experience in designing, developing and debugging embedded security applications is a plus
- Familiarity with Automotive and Industry standards and best practices such at ISO-SAE 21434, SAE J3101
- Knowledge of common communication protocols found in the automotive ecosystem such as TCP/IP, Automotive Ethernet, CAN, LIN, MOST, 3G/4G/LTE, Bluetooth, BLE, Wi-Fi
- Knowledge of cryptography and applied cryptography for provisioning secure hardware is desirable
- Knowledge of ARM (including Trust Zone architecture) and other embedded microprocessors
- Practical experience with security controls for POSIX type operating systems
- Understanding of SoC security technologies (e.g. eFuses, HAB)
- Experience designing small PCBs for testing purposes
- Hands-on experience with soldering and "chip-off" equipment
- Familiarity with reading wiring schematics and component datasheets
- Experience with vulnerability management process (from proof-of-concept to remediation)
- Hands-on experience of Embedded Security and its testing
- Experience with Linux operating system
- Experience working with programming languages such as C, C, Python (specifically for writing tools to help tasks)
- Experience with on-board communication interfaces such JTAG, SPI, UART, and SWD
- Experience with Reverse Engineering
- Experience with Binary Analysis methods and tools (e.g., IDA Pro, Ghidra)
- Experience working with various operating systems such as MacOS, Windows and Android operating systems.
- Max Submits Per Supplier: 2
- This position is focused on vehicle's Embedded Security Testing.
- This candidate will be responsible for testing the activities of vehicle issues, components as well as web, mobile and vehicle applications.
- The candidate needs to have strong knowledge and experience of Embedded System.
- 30 to 45 minutes of first round of interview with the Hiring Manager and others.
Vacancy caducado!