Job Title: Contract Hardware Engineer Mid.
Location: Atlanta, GA
Experience: 8+ years
Job Description:
Mandatory Skills:
Hardware Pen Testing, Firmware Pen Testing, RF WiFi and Bluetooth Pen Testing, Secured Development Life Cycle Processes, Threat Modeling, SCA, SAST, DAST, Binary Analysis.
Roles and Responsibilities:
This role is similar to Sr Advanced Cyber Security Architect/Engineer reports to the Product Security Assurance Leader and will be responsible for assessing and evaluating the security posture of a variety of Embedded and IOT Products and partner technologies. This role will be responsible for security services delivery, which may include use of application/network/firmware/hardware security toolsets, detection of security defects, and remediation consultation of those weaknesses.
RESPONSIBILITIES:
Individual Contributor with Product Security Assurance Team.
Provide mentorship, expertise and direction to junior team members.
Deliver Security Testing across all of Industrial Automation.
Assist in the development of modular, repeatable, effective Security Testing processes.
Partner with Tools and Technology Team to select, implement, develop, and automate testing with appropriate tools.
Work with cross functional teams to develop remediation suggestions.
Report observations using our standardized reporting structure.
The engineer may frequently lift and/or move up to 25 pounds.
WE VALUE:
Experience in Industrial Control Systems pentesting (Hardware and Firmware).
Exposure in pentesting Web, Mobile App, Thick Client, API, Web services, Hardware, Cloud, Containers.
Understanding of application protocols, development, and common attack vectors. .
Good cybersecurity capabilities and strong software engineering skills.
Excellent understanding of security by design principles and architecture level security concepts.
Ability to script advanced attacks.
Ability to fuzz applications and protocols for new vulnerabilities and able to fully exploit newly discovered vulnerabilities.
Ability to discover advanced logic flaws and multi-step architectural errors.
Experience and knowledge of penetration testing methodologies and tools.
Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities.
Effective oral and written communication skills.
Good interpersonal skills.
Experience in security testing within the appropriate domain
Relevant Security certifications (Eg: CEH, OSCP, OSWE, etc.,)
Familiarity with reverse engineering tools, debuggers, and dynamic analysis techniques.
Experience in integrating pentest tools into CI/CD pipeline.
YOU MUST HAVE:
Bachelor s degree in computer science or software engineering, electrical engineering or equivalent experience.
8+ years demonstrated experience in Cybersecurity with 5+ years in penetration testing