Назад
Company hidden
20 часов назад

Hardware Ethical Hacker

Формат работы
remote (только USA)
Тип работы
fulltime
Английский
b2
Страна
US/Canada
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Hardware Ethical Hacker (Hardware/IoT): Lead end-to-end security assessments of embedded and IoT devices with an accent on offensive access to debug interfaces, firmware extraction, and vulnerability proof through bench-based analysis. Focus on reverse engineering embedded binaries, performing side-channel/fault-injection when in scope, and delivering credible, actionable reports for both technical and leadership stakeholders.

Company

hirify.global is a cybersecurity consulting firm specializing in advanced penetration testing for high-stakes hardware security.

What you will do

  • Plan and execute hardware penetration tests on embedded and IoT devices within defined scope and rules of engagement.
  • Access and exploit debug interfaces (JTAG, SWD, UART) to gain code execution or memory access.
  • Extract firmware via debug ports or in-circuit reads (SPI/I2C/NAND) and analyze it for vulnerabilities.
  • Intercept and analyze embedded bus traffic (SPI/I2C/UART/CAN/USB) using logic analyzers and protocol decoders.
  • Where in scope, perform side-channel analysis and fault injection to bypass secure boot, readout protection, or authentication.
  • Reverse engineer firmware using tools like Ghidra/IDA/Binwalk, then write and present prioritized remediation guidance.

Requirements

  • Location: Fully remote within Canada or Texas
  • Strong electronics fundamentals, including ability to read schematics and datasheets and reason about boards.
  • Hands-on soldering skills (including SMD rework and basic chip removal).
  • Demonstrated experience accessing debug interfaces (JTAG/SWD/UART) and extracting firmware from real devices.
  • Comfort with bench instruments: logic analyzer, oscilloscope, and multimeter.
  • Firmware reverse engineering skills and scripting proficiency in Python, plus enough C to read embedded code.

Nice to have

  • Side-channel/fault-injection experience (e.g., ChipWhisperer).
  • RF/wireless experience (SDR, BLE, sub-GHz, Wi‑Fi).
  • Knowledge of secure boot chains, TEEs, secure elements, and HSMs.
  • PCB design familiarity (KiCad/Altium).
  • Published CVEs, conference talks, CTF placements, or open-source tooling; relevant certifications (e.g., OSCP).

Culture & Benefits

  • Fully remote work environment within Canada or Texas.
  • Immediate and ongoing offensive security training, mentorship, and professional development.
  • Competitive compensation and growth opportunity.
  • High-stakes engagements where judgment and bench skills matter.
  • Collaboration with skilled security professionals focused on technical excellence and raising the bar.

Hiring process

  • Interviews focused on technical depth, hardware/embedded assessment experience, and communication with stakeholders.
  • Evaluation of hands-on bench and reverse-engineering capabilities through role-relevant discussions/tasks.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →