Full Description
"Available For C2C , H1b Transfers & Valid US work authorization"
Job title: Embedded Security Testing Engineer
Location: Plano TX
Client: Toyota- TMNA
W2: Yes
Duration: 1 year contract with annual extensions
Pay Rate: $70hr on W2
Visa: GC or USC
Vendor: YOH, A DAY & ZIMMERMANN COMPANY
Note:
Try and find only GC or USC. Let me know if you find an h1 and I can ask but typically they will only accept GC or USC
*Must be local to Dallas or willing to relocate to Dallas and start day 1 in office.
*Must be onsite in Plano Office – 5 days a week everyday onsite.
Top skills/Must haves:
Embedded Hardware Security
Reverse Engineering
Linux
This position is focused on vehicle’s Embedded Security Testing.
This resource will be responsible for testing the activities of vehicle issues, components as well as web, mobile and vehicle applications.
The resource needs to have strong knowledge and experience of Embedded System.
Preferred skills/Pluses:
Experience with Binary Analysis methods and tools (e.g., IDA Pro, Ghidra)
Experience working with various operating systems such as MacOS, Windows and Android operating systems
Interview process: 30-45 minutes of first round of interview with the Hiring Manager and others.
Embedded Security Testing Engineer
In this role you will play a pivotal role in shaping the overall cybersecurity posture for Toyota. As an embedded security testing engineer, you will be responsible for leading and performing advanced security testing engagements for current and forward-model systems throughout Toyota’s Connected Car ecosystem.
Responsibilities:
Perform analysis of security requirements specifications and generate corresponding test specifications for a variety of products during design phase
Lead and perform execution of security test specifications during
verification phase ensuring that the specified security requirements have been implemented sufficiently
Perform other testing activities including pen testing and reverse engineering against embedded hardware and firmware with goals of identifying implementation flaws
Communicate complex technical findings, remediation guidance and recommendations effectively both verbally and written to technical and non-technical staff
Research and stay up to date on new attack vectors, vulnerabilities, and exploitation techniques
Lead and participate in small to large-scale individual and matrix-based groups, initiatives, or mentoring others in technical/functional security areas
Lead and participate in technology security design reviews with the ability to efficiently communicate potential issues and risks
Qualifications & Requirements
Bachelor’s degree (or higher) in Electrical Engineering, Computer Science, Cybersecurity or related is strongly desired
Demonstrate a good working knowledge of core security concepts, embedded security best practices (e.g. secure boot, secure debug, secure storage, secure communications) and the secure development lifecycle activities
Hands-on experience with designing and testing of the core embedded security concepts above
Experience with reverse engineering and binary analysis methods and tools (e.g. IDA Pro, Ghidra)
Experience with vulnerability analysis using CVSS scoring and CWE types
Knowledge of Linux and other embedded operating systems is preferred
Proficient in C, C++, Python (specifically for writing tools to help tasks)
Hands-on experience securing Linux, MacOS, Windows and Android operating systems
Ability to handle tasks with significant complexity under minimal supervision requiring a high degree of technical competence
Experience with on-board communication interfaces such JTAG, SPI, UART, and SWD
Additional Valued Attributes:
Experience