Key Skills
Industry
Job Description
Hello Everyone!
Job Title
Embedded Cybersecurity
Job Description
We are seeking an Embedded Security Specialist to lead and execute end‑to‑end security assessments of embedded and industrial systems. This role spans the full device stack, including firmware, secure boot chains, hardware interfaces, and platform-level security controls.
You will work closely with product engineering teams, platform architects, and the security lead to identify exploitable weaknesses, assess real‑world attack paths, and drive secure‑by‑design improvements across products. The role requires both hands‑on technical depth and the ability to influence design decisions through clear risk analysis and actionable recommendations.
Roles & Responsibilities
Key Responsibilities
- Conduct comprehensive security testing of embedded products, including firmware, communication interfaces, system components, and device‑to‑device interactions.
- Assess communication protocols such as Bluetooth, NFC, Wi‑Fi, and Ethernet for vulnerabilities including eavesdropping, spoofing, and protocol misuse.
- Test and analyze hardware interfaces such as UART, JTAG, SPI, I²C, CAN , or industrial interfaces (experience with at least one required; willingness to learn others expected).
- Evaluate secure boot, firmware update, and device integrity mechanisms to verify the effectiveness of protection controls.
- Collaborate closely with embedded development teams (primarily C/C++ engineers) to identify root causes of vulnerabilities and propose practical, risk‑based mitigation strategies.
- Produce clear, actionable security assessment reports, including remediation guidance and standardized risk scoring (e.g., CVSS)
- Partner with software, hardware, and system architects to ensure secure‑by‑design principles are applied throughout the product lifecycle.
Mandatory Skills
1. Firmware/RE: binwalk, Ghidra, IDA Pro, Binary Ninja, radare2, strings, symbol recovery, lifting & decompilation, patching 2. RF & Protocols: BLE (nRF sniffer), NFC/RFID (Proxmark3), Sub GHz (HackRF/USRP, YARD Stick One), CAN (can utils/CANoe), Wi Fi/Bluetooth coexistence 3. Protocol Tooling: Scapy (custom dissectors/fuzzers), CAN fuzzing/replay, BLE pairing/debug tooling 4. Python Tooling: internal libraries, CLI tooling, harnesses, protocol fuzzers, file format parsers, pipeline automation 5. Debug & HW.
Desirable Skills
Embedded security specialist
