8

applicants

Embedded Security Researcher Full-time

at SecureThings AI Pvt Ltd (Anywhere) (Published at 05-08-2019)

SecureThings is a Silicon-Valley (California) based start-up. SecureThings provides a real-time cyber security solution for connected vehicles. The multi-layered cyber security solution protects vehicles beginning from the tele-matics unit, ECU security to the in-vehicle network security. The solution is adaptive and builds intelligence using machine learning-based algorithms. The big data analytics platform provides analytics for attack trends, forensic analysis, awareness and insights to the OEMs and suppliers to make well-informed business decisions, avoid costly vehicle recalls and help in future architecture changes with its analysis, proactive alerts & trends.
We are looking for:
• Your dedication and passion for security talks about you, what your degree dictates about you doesn't matter
• Passionate, self-driven, hardworking & motivated individual with the thirst of knowledge and contributions to the community
• Papers you have written, tools you have developed for your references
• Comfortable to work in the open and a dynamic environment as individual contributor
• Write-ups, exploits, blogs you've written dictate your expertise in security research
• The craze for continuous research, learning, training with the latest tools and techniques
• Highly active with the latest research trends and keen to discuss and learn the same with other researchers
• You love to attend and learn from conferences all around the world and present your research at the same

Your day to day work includes:
• Develop and implement CAN, Ethernet and other communication protocols fuzzing, reversing or injection tools
• Extract firmware from solid-state memories of cars for reverse engineering
• Find security vulnerabilities in Firmware and write exploits or proof-of-concept for automotive vehicle or embedded devices
• In-depth analysis of latest security mechanisms inside software of embedded devices
• Create a detailed write-up of your findings
• Explain and structure right use-cases to demonstrate vulnerabilities to stakeholders
• Research and implement various mitigations of the identified vulnerabilities
• Review the source code, configurations, and communication protocols for security loopholes.
• On time delivery of results.
• Excellent verbal and written skills should be fluent enough to present and showcase your work to clients

Technical skills:
• 3+ Years of Experience in Security Industry
• Hands on with system & scripting language like C/C++, Python.
• Good with system internals, memory management, Networking and Basic cryptography
• Good with Assembly language on one or more of the architecture: ARM/MIPS/X86
• Development and Reversing experience for Linux/FreeRtos/MCU's and custom SOC's
• Hands on experience with tools like GDB, Radare2, IDA pro, Ghidra or Binary Ninja
• Firmware emulation with Qemu and other emulation platforms
• Should have experience with boot loaders like u-boot/redboot and others which are found in automotive vehicles
• In-depth knowledge of various Networking, OS and Binary Organization architecture.
• Design of custom tools or injection frameworks for fuzzing, fault injection or corruption.

Good to Have:
• Automotive Industry Security Experience
• Published CVE's or Exploit-DB code
• Research Papers in Conferences and Journals
• Specialized in research areas like Memory Exploitation/Unknown Binary or Protocol Reversing
• Security Blog/Website/Channel or YouTube Videos, legitimate Security Github repos.
• HOF’s/Bounties/Acknowledgements/HTB/Stack Exchange/Twitch/ for Security Research
• Any passionate stuff about you that you feel is worth mentioning


Recent jobs at SecureThings AI Pvt Ltd


Viewed: 166 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend