Address
Form of workJob Description
We are hiring Embedded Security Testing Engineer for a Contract position in Plano, TX
=======================================================
** We will NOT accept 3rd Party (C2C) Contractors **
=======================================================
Position:Embedded Systems/Cyber Security Testing Engineer
JOB REF#:1132289
Duration:12+ Months (On-going Contract)
Location:Plano, TX 75204 (ONSITE)
Rate:Open/Market Rate (W2 Only)
Must be local, as this role is 100% ONSITE (If your not local, you must be willing to relocate at your own expense)
This role is focused on vehicle s Embedded Security Testing, responsible for testing the activities of vehicle issues, components as well as web, mobile and vehicle applications. Responsible for shaping the overall cybersecurity posture. As an embedded security testing engineer, you will be leading and performing advanced security testing engagements for current and forward-model systems throughout Connected Car ecosystem.
Responsibilities Include:
Perform analysis of security requirements specifications and generate corresponding test specifications for a variety of products during design phase
Lead and perform execution of security test specifications during verification phase ensuring that the specified security requirements have been implemented sufficiently
Perform other testing activities including pen testing and reverse engineering against embedded hardware and firmware with goals of identifying implementation flaws
Communicate complex technical findings, remediation guidance and recommendations effectively both verbally and written to technical and non-technical staff
Research and stay up to date on new attack vectors, vulnerabilities, and exploitation techniques
Lead and participate in small to large-scale individual and matrix-based groups, initiatives, or mentoring others in technical/functional security areas
Lead and participate in technology security design reviews with the ability to efficiently communicate potential issues and risks
MUST HAVE EXP IN THE FOLLOWING:
1. Embedded Hardware Security
2. Reverse Engineering
3. Linux
REQUIRED SKILLS/EXPERIENCE:
** STRONG experience with Reverse Engineering
** MUST have experience with embedded systems and Cyber Security
** MUST HAVE Hands-on experience of Embedded Security and Embedded Hardware/Security Testing
** Experience with Linux operating system
** Experience programming in C, C++, and Python (specifically for writing tools to help tasks)
** Experience with on-board communication interfaces such JTAG, SPI, UART, and SWD
Working knowledge of core security concepts, embedded security best practices (e.g. secure boot, secure debug, secure storage, secure communications) and the secure development lifecycle activities
Hands-on experience with designing and testing of the core embedded security concepts above
Experience with vulnerability analysis using CVSS scoring and CWE types
Ability to handle tasks with significant complexity under minimal supervision requiring a high degree of technical competence
Excellent written and verbal communication skills
Education: Bachelor s degree (or higher) in Electrical Engineering, Computer Science, Cybersecurity or related is strongly desired
DESIRED SKILLS/EXPERIENCE:
** Experience with Binary Analysis methods and tools (e.g., IDA Pro, Ghidra)
** Experience working with various operating systems such as MacOS, Windows and Android operating systems
Experience in designing, developing and debugging embedded security applications is a plus
Familiarity with Automotive and Industry standards and best practices such at ISO-SAE 21434, SAE J3101
Knowledge of common communication protocols found in the automotive ecosystem such as TCP/IP, Automotive Ethernet, CAN, LIN, MOST, 3G/4G/LTE, Bluetooth, BLE, Wi-Fi
Knowledge of cryptography and applied cryptography for provisioning secure hardware is desirable
Knowledge of ARM (including Trust Zone architecture) and other embedded microprocessors
Practical experience with security controls for POSIX type operating systems
Understanding of SoC security technologies (e.g. eFuses, HAB)
Experience designing small PCBs for testing purposes
Hands-on experience with soldering and chip-off equipment
Familiarity with reading wiring schematics and component datasheets
Experience with vulnerability management process (from proof-of-concept to remediation)
Calance Consultant Benefits Offerings:
- EPO/PPO Medical Plan (Cigna)
- HMO/PPO Dental programs (Cigna)
- Vision - VSP (Vision Plan Summary)
- 401K VOYA Retirement vesting program
=======================================================
** We will NOT accept 3rd Party (C2C) Contractors **
=======================================================
Position:Embedded Systems/Cyber Security Testing Engineer
JOB REF#:1132289
Duration:12+ Months (On-going Contract)
Location:Plano, TX 75204 (ONSITE)
Rate:Open/Market Rate (W2 Only)
Must be local, as this role is 100% ONSITE (If your not local, you must be willing to relocate at your own expense)
This role is focused on vehicle s Embedded Security Testing, responsible for testing the activities of vehicle issues, components as well as web, mobile and vehicle applications. Responsible for shaping the overall cybersecurity posture. As an embedded security testing engineer, you will be leading and performing advanced security testing engagements for current and forward-model systems throughout Connected Car ecosystem.
Responsibilities Include:
Perform analysis of security requirements specifications and generate corresponding test specifications for a variety of products during design phase
Lead and perform execution of security test specifications during verification phase ensuring that the specified security requirements have been implemented sufficiently
Perform other testing activities including pen testing and reverse engineering against embedded hardware and firmware with goals of identifying implementation flaws
Communicate complex technical findings, remediation guidance and recommendations effectively both verbally and written to technical and non-technical staff
Research and stay up to date on new attack vectors, vulnerabilities, and exploitation techniques
Lead and participate in small to large-scale individual and matrix-based groups, initiatives, or mentoring others in technical/functional security areas
Lead and participate in technology security design reviews with the ability to efficiently communicate potential issues and risks
MUST HAVE EXP IN THE FOLLOWING:
1. Embedded Hardware Security
2. Reverse Engineering
3. Linux
REQUIRED SKILLS/EXPERIENCE:
** STRONG experience with Reverse Engineering
** MUST have experience with embedded systems and Cyber Security
** MUST HAVE Hands-on experience of Embedded Security and Embedded Hardware/Security Testing
** Experience with Linux operating system
** Experience programming in C, C++, and Python (specifically for writing tools to help tasks)
** Experience with on-board communication interfaces such JTAG, SPI, UART, and SWD
Working knowledge of core security concepts, embedded security best practices (e.g. secure boot, secure debug, secure storage, secure communications) and the secure development lifecycle activities
Hands-on experience with designing and testing of the core embedded security concepts above
Experience with vulnerability analysis using CVSS scoring and CWE types
Ability to handle tasks with significant complexity under minimal supervision requiring a high degree of technical competence
Excellent written and verbal communication skills
Education: Bachelor s degree (or higher) in Electrical Engineering, Computer Science, Cybersecurity or related is strongly desired
DESIRED SKILLS/EXPERIENCE:
** Experience with Binary Analysis methods and tools (e.g., IDA Pro, Ghidra)
** Experience working with various operating systems such as MacOS, Windows and Android operating systems
Experience in designing, developing and debugging embedded security applications is a plus
Familiarity with Automotive and Industry standards and best practices such at ISO-SAE 21434, SAE J3101
Knowledge of common communication protocols found in the automotive ecosystem such as TCP/IP, Automotive Ethernet, CAN, LIN, MOST, 3G/4G/LTE, Bluetooth, BLE, Wi-Fi
Knowledge of cryptography and applied cryptography for provisioning secure hardware is desirable
Knowledge of ARM (including Trust Zone architecture) and other embedded microprocessors
Practical experience with security controls for POSIX type operating systems
Understanding of SoC security technologies (e.g. eFuses, HAB)
Experience designing small PCBs for testing purposes
Hands-on experience with soldering and chip-off equipment
Familiarity with reading wiring schematics and component datasheets
Experience with vulnerability management process (from proof-of-concept to remediation)
Calance Consultant Benefits Offerings:
- EPO/PPO Medical Plan (Cigna)
- HMO/PPO Dental programs (Cigna)
- Vision - VSP (Vision Plan Summary)
- 401K VOYA Retirement vesting program
