Hands-on experience of Embedded Security and its testing
Experience with Linux operating system
Experience working with programming languages such as C, C, Python (specifically for writing tools to help tasks)
Experience with on-board communication interfaces such JTAG, SPI, UART, and SWD
Preferred skills/Pluses:
Experience with Reverse Engineering
Experience with Binary Analysis methods and tools (e.g., IDA Pro, Ghidra)
Experience working with various operating systems such as MacOS, Windows and Android operating systems
Interview process:
30-45 minutes of first round of interview with the Hiring Manager and others.
Embedded Security Testing Engineer In this role you will play a pivotal role in shaping the overall cybersecurity posture for client. As an embedded security testing engineer, you will be responsible for leading and performing advanced security testing engagements for current and forward-model systems throughout Toyota's Connected Car ecosystem.
Responsibilities:
Perform analysis of security requirements specifications and generate corresponding test specifications for a variety of products during design phase
Lead and perform execution of security test specifications during verification phase ensuring that the specified security requirements have been implemented sufficiently
Perform other testing activities including pen testing and reverse engineering against embedded hardware and firmware with goals of identifying implementation flaws
Communicate complex technical findings, remediation guidance and recommendations effectively both verbally and written to technical and non-technical staff
Research and stay up to date on new attack vectors, vulnerabilities, and exploitation techniques
Lead and participate in small to large-scale individual and matrix-based groups, initiatives, or mentoring others in technical/functional security areas
Lead and participate in technology security design reviews with the ability to efficiently communicate potential issues and risks
As an Associate - Product Security Engineer within the Cybersecurity Technology Controls Organization, you serve as a seasoned member of a team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Carry out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions in support of the firm\'s business objectives.