Overview
Skills
Job Details
We are seeking a skilled and detail-oriented Security Engineer to lead penetration testing efforts for embedded systems. This role focuses on identifying vulnerabilities across a range of communication interfaces and embedded control systems, ensuring the security and resilience of our connected charging platforms.
Key Responsibilities:
Conduct penetration testing and vulnerability assessments on embedded systems, focusing on:
-Ethernet-based interfaces
-Wi-Fi (2.4 GHz & 5 GHz, 802.11 b/g/n)
-Bluetooth Low Energy (BLE)
-CAN bus, Power Line Communication (PLC) protocols (SAE J1772)
-OCPP 1.6J and ISO 15118 Plug & Charge
Analyze and reverse-engineer firmware and hardware components of the Express 280, including:
-Power modules
-Authentication systems (RFID, NFC, mobile)
-Remote energy management APIs
Collaborate with hardware, software, and cloud teams to remediate identified vulnerabilities.
Develop and maintain automated security testing tools and scripts.
Document findings and provide actionable recommendations in clear, technical reports.
Stay current with emerging threats, vulnerabilities, and mitigation techniques in embedded and IoT systems.
Required Qualifications:
Bachelor's or master's degree in Cybersecurity, Computer Engineering, Electrical Engineering, or related field.
3+ years of experience in embedded systems security or penetration testing.
Proficiency in tools such as Wireshark, Burp Suite, Metasploit, Ghidra, or similar.
Experience with network protocol fuzzing, RF analysis, and hardware debugging (e.g., JTAG, UART).
Strong understanding of embedded Linux, RTOS, and firmware analysis.
Preferred Skills:
Certifications such as OSCP, CEH, or GIAC GPEN.
Knowledge of cloud-connected IoT security and mobile app integration.