Hardware Security and Vulnerability Analyst

About The Position

Requirements

• Ability to obtain and maintain a US government security clearance.
• Bachelor's degree in Electrical Engineering, Computer Engineering, or a related field.
• Experience reverse engineering embedded systems including using standard tools such as IDA Pro, Ghidra, etc.
• Experience working with FPGAs, hardware description languages (VHDL, Verilog), microcontrollers, SoCs, and related hardware (Flash, SRAM, DRAM, etc.).
• Strong programming skills in scripting languages (Python, JavaScript, bash) and C/C++ for hardware/software integration.
• Experience standard interfaces (AXI, SPI, UART, JTAG).
• Strong analytical and problem-solving skills, with the ability to understand complex software and hardware designs.
• Strong documentation skills and the ability to convey complex information clearly and effectively.
• Collaborative mindset and excellent communication skills to work effectively with cross-functional teams.
• Experience in hardware security and reverse engineering techniques.

Nice To Haves

• Advanced degree (M.S. or Ph.D.) in Electrical Engineering, Computer Engineering, or a related field.
• Knowledge of cryptographic algorithms and experience implementing mathematical algorithms in hardware or software.
• Experience in tamper detection and anti-reverse engineering techniques.

Responsibilities

• System Analysis : Analyze systems to understand functionality, failure points, and consequences of failure.
• Security Measure Circumvention : Bypass implemented security measures to gain access to sensitive data, including enabling debugging, forging or bypassing signatures, gaining elevated privileges, and simulating environmental and working conditions.
• Binary Code Extraction and Analysis : Extract firmware, executables, and other sensitive data from embedded systems and analyze the extracted code for possible vulnerabilities and sensitive data, e.g. passwords, cryptographic keys, etc.
• Side-Channel Analysis and Fault Injection : Setup and perform side-channel analysis to recover sensitive data, e.g. cryptographic keys, sensitive plaintext, etc. Setup and perform fault injection attacks to bypass security measures and/or recover sensitive data.
• Exploit Development : Develop custom and novel exploits to bypass security measures, recover sensitive data, or gain elevated privileges in embedded systems.
• Documentation: Prepare detailed documentation, including physical setups, testing procedures, and user guides, for reproducibility of found results and maintenance.
• Continuous Learning: Stay current with the latest advancements in reverse engineering and hardware security to continually refine and enhance skills.