Embedded Security Researcher, Mid in Annapolis Junction, MD at Booz Allen Hamilton

Date Posted: 2/5/2018

Job Snapshot

Job Description

Job Number: R0016389

Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.


Embedded Security Researcher, Mid

Key Role:

Explore threats and possible attack scenarios in embedded devices by analyzing network diagrams, schematics, software designs, past code review findings, and other technical documents. Develop state–of–the–art attacks against embedded devices using a variety of disciplines, including hardware hacking, wireless hacking, reverse engineering, and network penetration testing. Create tools to meet project goals and improve the team’s overall capabilities. Communicate complex vulnerabilities to both technical and non–technical clients through oral presentations and written reports. Conduct cutting–edge security research on new attack vectors, vulnerabilities, and exploitation techniques. Market oneself and the team through blog posts, whitepapers, tool releases, conference talks, and other presentations.


Basic Qualifications:

-2+ years of experience with vulnerability discovery and exploitation

-Experience with firmware analysis and reverse engineering using IDAPro or an equivalent tool

-Knowledge of one or more assembly languages

-Knowledge of Linux or equivalent operating systems commonly found in embedded devices

-Knowledge of networking and common network protocols

-Knowledge of security topics, including authentication, authorization, encryption, hashing, software attack methodologies, secure boot, and secure data storage

-Knowledge of logical and structured approaches to project execution

-Ability to work independently under a deadline
-Ability to obtain a security clearance


Additional Qualifications:

-Experience with one or more modern programming languages, including Python and C/C++ preferred

-Experience with soldering and de–soldering

-Experience in working with software defined radios

-Experience with conducting side channel attacks

-Experience with software development

-Experience with building custom toolchains

-Experience with analyzing source code for security vulnerabilities

-Experience in working with SAT and SMT solvers

-Knowledge of cryptography

-Ability to connect and use JTAG and On–Chip debuggers

-Ability to analyze or design circuit boards

-Ability to travel

-Possession of excellent oral and written presentation skills
-BA or BS degree
 

Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions.  Booz Allen is committed to delivering results that endure.

We are proud of our diverse environment, EOE, M/F/Disability/Vet.

SIG2017

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.