Long term contract in Plano, TX for an Embedded System Security Engineer to analyze embedded system security, developing tools and proof-of-concept exploits and reverse engineering software from bootloaders to userland applications. Due to the nature of this position, candidates must work on-site.
Responsibilities:
Responsibilities:
-
Perform analysis of security requirements specifications against implementation.
-
Execute penetration testing and reverse engineering of software and firmware.
-
Communicate complex technical findings, remediation guidance and recommendations.
-
Develop skills through research on new attack vectors, vulnerabilities, and exploits.
Qualifications:
-
Bachelor’s degree (or higher) in Computer Engineering, Computer Science, Cybersecurity.
-
Proficient in C, C++, ARM and/or Python (specifically for writing tools to help tasks).
-
Knowledge of core, fundamental security concepts (e.g., cryptography, encryption).
-
Knowledge of embedded security features and best practices (e.g., Secure Boot).
-
Experience with Linux and other embedded operating systems.
-
Experience with reverse engineering and binary analysis tools (e.g., IDA Pro, Ghidra).
-
Experience evaluating system security based on standard controls (e.g., SELinux).
-
Experience with identifying software security issues and vulnerabilities
-
Knowledge of software fuzzing techniques and solutions (e.g., BAP, AFL).
-
Knowledge of symbolic execution and other advanced binary analyses (e.g. angr).
-
Experience with vulnerability analysis using CVSS scoring and CWE types.
-
Experience in penetration testing and requirements verification.
-
Experience in performing code audit or assessments.