Embedded Security Researcher, Senior in Annapolis Junction, MD at Booz Allen Hamilton Inc.

Date Posted: 4/6/2018

Job Snapshot

Job Description

Job Number: R0026238

Embedded Security Researcher, Senior

Key Role:

Explore threats and possible attack scenarios in embedded devices by analyzing network diagrams, schematics, software designs, past code review findings, and other technical documents. Develop state-of-the-art attacks against embedded devices using a variety of disciplines, including hardware hacking, wireless hacking, reverse engineering, and network penetration testing. Create tools to meet project goals and improve the team’s overall capabilities. Communicate complex vulnerabilities to both technical and non-technical clients through oral presentations and written reports. Conduct cutting-edge security research on new attack vectors, vulnerabilities, and exploitation techniques. Market oneself and the team through blog posts, whitepapers, tool releases, conference talks, and equivalent presentations.


Basic Qualifications:

-2+ years of experience with vulnerability discovery and exploitation

-Experience with firmware analysis and reverse engineering using IDAPro or an equivalent tool

-Knowledge of one or more assembly languages

-Knowledge of Linux or equivalent operating systems commonly found in embedded devices

-Knowledge of networking and common network protocols

-Knowledge of security topics, including authentication, authorization, encryption, hashing, software attack methodologies, secure boot, and secure data storage

-Knowledge of logical and structured approaches to project execution

-Ability to work independently under a deadline
-Ability to obtain a security clearance


Additional Qualifications:

-Experience with one or more modern programming languages, including Python and C/C++ preferred

-Experience with soldering and desoldering

-Experience in working with software defined radios

-Experience with conducting side channel attacks

-Experience with software development

-Experience with building custom toolchains

-Experience with analyzing source code for security vulnerabilities

-Experience in working with SAT and SMT solvers

-Knowledge of cryptography

-Ability to connect and use JTAG and On-Chip debuggers

-Ability to analyze or design circuit boards

-Ability to travel

-Possession of excellent oral and written presentation skills
-BA or BS degree
 

Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation,

national origin, disability, or veteran status—to fearlessly drive change.

CMD, SIG2017

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.