SR. RESEARCH ANALYST - SR. RESEARCH ENGINEER - EMBEDDED SYSTEMS
Location: San Antonio, TX
Name: Southwest Research Institute Inc
Work as a member of and lead project teams applying knowledge of embedded systems performing vulnerability testing of embedded systems including IoT devices, automotive embedded control units (ECUs). Develop clearly written documentation describing engineering concepts, designs, project results and other project related artifacts. Contribute new ideas, approaches and techniques during project meetings. Preparation of formal and informal technical presentations for prospective clients, existing clients and conferences. Projects commonly require limited travel to client sites. Promote work to new clients and prepare proposals to promotional contacts. Initiate new and innovative research initiatives with goal of new offerings to existing and new clients.
Requires a BS or MS degree in Electrical Engineering, Computer Engineering or Computer Science, with at least a 3.25 GPA. MS is highly desirable. Must have 7 years of experience with 3 years of experience in computer, embedded system, IoT, network, or software security vulnerability testing. Must have strong oral and written communication skills. Must have experience with boot loaders and embedded applications, knowledge of Windows, Linux, Android and iOS; experience with security evaluation and threat assessments of embedded systems; understanding of common cryptographic algorithms and protocols; understanding of common weaknesses and modern attacks on cryptographic algorithms and protocols; Familiarity with compiler internals, debuggers, disassemblers, and other low level development and analysis tools. Preferred knowledge includes strong understanding of embedded systems / software. Additional preferred hardware skills include printed circuit board (PCB) reverse engineering; application of common microcontroller programming tools and debugging interfaces; data bus monitoring (snooping) and data injection; communications protocol analysis; wireless communications channel snooping and data injection. Additional software skills could include software/firmware extraction, reverse engineering, and functional analysis; memory image capture, static memory analysis, and data element extraction; system security architecture analysis and design, and risk management analysis; encryption system implementation analysis for multiple encryption types (symmetric and asymmetric). A valid/clear driver's license is required.
Applicant selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Applicant must be a U.S. citizen.