TopUSAJobs.com
This listing was posted on TopUSAJobs.
Embedded Security Consultant
Location:
Chicago, IL
Description:
What You'll Do Cisco is at the forefront of securing today's emerging technologies. You'll be part of a highly skilled team hunting for critical security vulnerabilities in third party connected devices that will shape our future. Your primary objective will be identifying, exploiting and documenting vulnerabilities in embedded systems and their associated remote services. Targets will include components from connected vehicles, medical devices, and industrial control systems. You'll also: Develop threat models Review design / architecture documents Identify and interface with hardware attack vectors. (UART, JTAG, SWD, NVRAM, Flash, USB Peripherals, SD Cards, etc.) Configure cross-compiler toolchains for obscure targets Reverse engineer communications protocols Develop process-specific fuzz testing environments Reverse engineer firmware targeting ARM & PPC processors Bus message analysis, instrumentation, and fault injection (e.g. SPI, I2C, USB, CAN, LIN) Instrument and test communications channels (e.g. Wi-Fi, Bluetooth/BLE, Cellular) Jailbreak devices (get root) Write reports which clearly document vulnerabilities and provide context at various levels of detail Who You'll Work With You'll be working with a seasoned group of security consultants each with an average of more than 10 years of experience in offensive security roles. Our team represents a broad skill set including expertise in hardware & software reverse engineering, electrical engineering, cryptography, fault injection, side-channel analysis, hardware glitching and RF communications. Who You Are You're naturally curious about how devices work and how they can be compromised or subverted. You're a professional who collaborates with colleagues to deliver excellent results. You can communicate and present complex topics to customers clearly. You have a working knowledge of fundamental electronics concepts including passive components and transistors. Minimum qualifications: Bachelor's degree in Computer Science, Computer Engineering, or Electrical Engineering Fluency in C, C++, ARM assembly, x86 assembly and Python 7 years of professional experience penetration testing 5 years experience reverse engineering software with IDA Pro or Ghidra 3 years experience working with embedded systems Solid understanding of networking concepts and tools (e.g. nmap, scapy, nessus) Solid understanding of application security concepts Extensive knowledge of common threats and vulnerabilities affecting devices Experience identifying and exploiting security vulnerabilities Exceptional English communication skills, both oral and written Desired skills (any of the following are a plus but not required): OSCP or OSCE certifications Soldering & SMT rework Solid understand of secure boot and ARM TrustZone concepts Familiarity with common electrical test equipment Oscilloscopes, Logic Analyzers, Bus Protocol Analyzers, Multimeters, Spectrum Analyzers Comfortable working with SBCs such as the Raspberry Pi or BeagleBone Intimate knowledge of the Linux kernel Working knowledge of QNX Practical experience with Software Defined Radio (SDR) Reading / capturing electrical schematics (e.g. Altium, KiCad) Verilog / VHDL and FPGA design Extensive knowledge of on-board and connectivity protocols SPI, I2C, CAN, LIN, USB Bluetooth / BLE Wi-Fi 3G & 4G Cellular Practical experience identifying and exploiting side channel attacks Practical experience circumventing device security using clock/power glitching Experience evaluating cryptography and protection of sensitive information Why Cisco We connect everything: people, processes, data, and things. We innovate everywhere, taking bold risks to shape the technologies that give us smart cities, connected cars, and handheld hospitals. And we do it in style with unique personalities who aren't afraid to change the way the world works, lives, plays and learns. We are thought leaders, tech geeks, pop culture aficionados, and we even have a few purple haired rock stars. We celebrate the creativity and diversity that fuels our innovation. We are dreamers and we are doers. We Are Cisco. Message to applicants applying to work in the U.S. and/or Canada: When available, the salary range posted for this position reflects the projected hiring range for new hire, full-time salaries in U.S. and/or Canada locations, not including equity or benefits. For non-sales roles the hiring ranges reflect base salary only; employees are also eligible to receive annual bonuses. Hiring ranges for sales positions include base and incentive compensation target. Individual pay is determined by the candidate's hiring location and additional factors, including but not limited to skillset, experience, and relevant education, certifications, or training. Applicants may not be eligible for the full salary range based on their U.S. or Canada hiring location. The recruiter can share more details about compensation for the role in your location during the hiring process. U.S. employees have access to quality medical, dental and vision insurance, a 401(k) plan with a Cisco matching contribution, short and long-term disability coverage, basic life insurance and numerous wellbeing offerings. Employees receive up to twelve paid holidays per calendar year, which includes one floating holiday, plus a day off for their birthday. Employees accrue up to 20 days of Paid Time Off (PTO) each year and have access to paid time away to deal with critical or emergency issues without tapping into their PTO. We offer additional paid time to volunteer and give back to the community. Employees are also able to purchase company stock through our Employee Stock Purchase Program. Employees on sales plans earn performance-based incentive pay on top of their base salary, which is split between quota and non-quota components. For quota-based incentive pay, Cisco typically pays as follows: .75% of incentive target for each 1% of revenue attainment up to 50% of quota; 1.5% of incentive target for each 1% of attainment between 50% and 75%; 1% of incentive target for each 1% of attainment between 75% and 100%; and once performance exceeds 100% attainment, incentive rates are at or above 1% for each 1% of attainment with no cap on incentive compensation. For non-quota-based sales performance elements such as strategic sales objectives, Cisco may pay up to 125% of target. Cisco sales plans do not have a minimum threshold of performance for sales incentive compensation to be paid.
Company:
Cisco
Posted:
April 13 on TopUSAJobs
Visit Our Partner Website
This listing was posted on another website. Click here to open: Go to TopUSAJobs
Important Safety Tips
- Always meet the employer in person.
- Avoid sharing sensitive personal and financial information.
- Avoid employment offers that require a deposit or investment.
To learn more, visit the Safety Center or click here to report this listing.
More About this Listing: Embedded Security Consultant
Embedded Security Consultant is a Consulting Jobs Consultant Job at Cisco located in Chicago IL. Find other listings like Embedded Security Consultant by searching Oodle for Consulting Jobs Consultant Jobs.
Embedded Security Consultant is a Consulting Jobs Consultant Job at Cisco located in Chicago IL. Find other listings like Embedded Security Consultant by searching Oodle for Consulting Jobs Consultant Jobs.