Wireless Security Engineer

About CENSUS

CENSUS LABS is a cyber-security engineering powerhouse specializing in securing products and organizations. Our identity is entrenched with professionalism, engineering, scientific mindset and hacking demeanor. Our work is research fueled, allowing us to provide a diverse set of professional services. CENSUS LABS is trusted to perform product security engagements helping our clients secure their solutions from conception to release in a realistic risk-based approach with our experience on end-to-end systems, including Secure Communications, IoT, Medical, Mobile and Vehicle Computer products.

Learn more about CENSUS at census-labs.com.

About the Job / Key Responsibilities

CENSUS’ bespoke cybersecurity services are built upon a talented pool of Security Engineers, whose role extends beyond mere adherence to industry best practices. Under the management and mentorship of our Technical Leads and Technical Project Managers, our Security Engineers are entrusted with assessing the completeness and maturity of an extensive range of cybersecurity products and features. Along with capturing defects and inefficiencies, in-depth mitigation strategies are explored, presented, and re-evaluated after their integration, in a highly agile and adaptive service delivery model.

We are looking for talented & ambitious professionals to grow our Product Security Professional Services team and join our ongoing mission to deliver in-depth and top-tier cybersecurity services to our valued clients. As part of this role, you will use your knowledge and experience - in the Wireless Security domain – to execute design reviews, implementation assessments and mitigation consulting activities scoped across products of various industries. The role is focused on embedded wireless systems and protocols in products with diverse operational environments, varying communication constraints and security requirements.

You will work side-by-side with our clients’ development and security teams & partners, under engagements / projects that involve:

• Performing hands-on functional and security assessments of wireless systems and implementations.

• Reviewing product security designs, documenting missing security controls, and driving analysis for security improvements.

• Researching, reviewing, comparing, and proposing technologies that can satisfy the client’s established requirements, and align with their strategies.

• Studying the security characteristics / maturity of secure communication protocols and verifying their fitness against product security goals.

• Verifying if output implementation is aligned with the products’ security architecture, requirements, and threat model.

• Researching and developing new approaches and countermeasures for emerging security threats to wireless systems.

• Developing software / tools for interfacing with and controlling lab equipment for automated data collection, measurement, and analysis.

• Documenting and presenting product security risks in both technical- and business-oriented language.

Minimum Qualifications

• MSc or BSc in Electrical Engineering, Computer Science, Computer Engineering, Electronics Engineering, or equivalent practical experience.

• 4+ years of experience in wireless communications for embedded systems. Experience can be an engineering / development position (e.g., consumer or enterprise), an engineering-based consultancy role, an equivalent engineering-based role, or a combination of them.

• Proven experience in developing, auditing, or testing wireless security solutions / features on embedded devices.

• Proficient in English and excellent communication skills.

Required Skills

• Experience with wireless communication protocols, and/or signal processing concepts.

• Experience with security concepts for Embedded Systems, Linux, or Real Time Operating Systems.

• Experience with reviewing and researching wireless security architectures and technologies related to embedded system implementations of such architectures.

• Experience with C, C++, Rust, or Assembly (ARM) programming languages in the context of modem, networking and other wireless communication services.

• Experience with Software-Defined Radio (SDR) usage for wireless networking / communications and the security challenges of these stacks.

• Experience with cryptographic primitives and cryptographic best practices in the context of wireless protocols security (replay protection, confidentiality, etc.)

• Experience in identifying and reporting security vulnerabilities on wireless protocols and wireless protocols implementations (memory corruption, side-channel attacks, business logic, etc.).

• Problem solving skills, analytical thinking, and willingness to learn/grow.

Nice-to-Have Skills

• Familiarity with LTE, 5G, or other radio access network configuration, function development, and/or evaluation

• Familiarity with secure boot, firmware & software integrity, OTA updates, and assisted secure boot for DSP-based peripherals.

• Familiarity with TEE, TPM, SE, SPU, and other related technologies to isolate execution of security critical operations.

• Experience of collaborating with international teams across multiple time zones.
  

CENSUS provides:

A collaborative work environment: you will be working among exceptional engineers, highly experienced in the field of Cybersecurity, that value teamwork and knowledge sharing.

An efficient work environment: you will be provided with access to the necessary technology, training, and resources in order to achieve your goals. CENSUS delivery processes will make sure that the output of your work is of high quality and presented in the best possible manner.

An environment for personal development: instead of sticking to a project or a role, we purposefully make sure that you gain experience by working on different projects and grow by practicing different roles.

A creative work environment: our engineers propose solutions to some of the most challenging technological problems, contribute to many of the company’s processes and tools, and perform leading IT Security Research with results published on major conferences and publications.

An enjoyable work environment: beyond the competitive salary and benefits, we maintain a friendly and enjoyable work environment for everyone, covering work at the office, remote work and onsite work at the customer’s premises.

CENSUS is an equal opportunity employer. The Company does not discriminate on the basis of race, color, creed, pregnancy, religion, gender, national origin, age, disability, marital, or any other legally protected status. The Company also makes reasonable accommodations for disabled employees. Finally, the Company prohibits the harassment of any individual based on their protected status. This policy applies to all areas of personnel actions including recruitment, hiring, training, promotion, compensation, benefits, transfer, and social and recreational programs.

#LI-Onsite