Embedded Security Researcher
פורסם 25 במאי · 0 מועמדים
התפקיד במילים פשוטות
בתפקיד זה, תבצע מחקר מעמיק ובדיקות חדירה על יחידות בקרה אלקטרוניות (ECUs) ברכב, ותחשוף פגיעויות הן ברמת החומרה והן ברמת התוכנה. בנוסף, תפעל כ"צוות אדום" עבור מערכות הגנת הרכב של החברה, ותדמה התקפות מתוחכמות כדי להבטיח שיכולות הזיהוי יישארו צעד אחד לפני איומים גלובליים.
- Proven experience in exposing and exploiting vulnerabilities in complex systems
- Hands-on research experience with embedded/low-level systems
- Deep understanding of the logic and vulnerabilities within network protocols and the ability to implement functional attacks against them
- Strong grasp of cybersecurity principles, including cryptography
- Strong scripting and development skills in Python (for research/tooling)
- Experience working with data teams, understanding of feature engineering, or experience fine-tuning AI models based on security domain expertise
- High level of expertise in Linux / QNX / Android internals (both user and kernel space)
- Experience building or testing Intrusion Detection/Prevention Systems (IDS/IPS) or EDR/XDR platforms
- Understanding of automotive-specific protocols (CAN, Automotive Ethernet, UDS, etc.) and the ability to implement functional attacks against them
חולץ מתיאור המשרה · מתעדכן אוטומטית
למי זה מתאים
התפקיד מתאים למועמדים בעלי ניסיון מוכח בחשיפה וניצול פגיעויות במערכות מורכבות, ובעלי ניסיון מחקרי מעשי במערכות משובצות/נמוכות רמה. נדרשת הבנה עמוקה בלוגיקה ובפגיעויות של פרוטוקולי רשת ויכולת ליישם התקפות פונקציונליות נגדם.
תיאור המשרה המלא
המשרה המקורית · נשמר לעיוןPlaxidityX is looking for a brilliant Embedded Security Researcher to join our elite team. I
n this role, you will combine offensive research with product innovation.
You will conduct in-depth research and penetration testing on Automotive ECUs, uncovering vulnerabilities at both the hardware and software levels.
Additionally, you will act as the "Red Team" for our vehicle protection systems, simulating sophisticated attacks to ensure our detection capabilities stay ahead of global threats.
What You’ll Do
ECU & Low-Level Research: Conduct deep-dive security research into Automotive Electronic Control Units (ECUs).
Automotive Offensive Research: Analyze automotive protocols and architectures to identify, develop, and implement end-to-end attack vectors.
Red Teaming: Serve as the internal adversary for our vehicle protection products. You will execute attacks to validate detection efficacy and provide the offensive "ground truth" needed to improve our security logic.
Collaborate with Data Scientists: Work closely with our Data Science teams to fine-tune AI-based detection features, helping to translate complex exploit behaviors into actionable data features.
Requirements
Offensive Mindset: Proven experience in exposing and exploiting vulnerabilities in complex systems.
Embedded Expertise: Hands-on research experience with embedded/low-level systems.
Network Communication Expertise: Deep understanding of the logic and vulnerabilities within network protocols and the ability to implement functional attacks against them.
Security Fundamentals: Strong grasp of cybersecurity principles, including cryptography.
Programming: Strong scripting and development skills in Python (for research/tooling) and C/C++ (for exploit development).
Execution: A "get-things-done" attitude; self-driven and thrives in fast-paced, problem-solving environments.
Advantages
Data Science & AI: Experience working with data teams, understanding of feature engineering, or experience fine-tuning AI models based on security domain expertise.
OS Internals: High level of expertise in Linux / QNX / Android internals (both user and kernel space).
Product Security: Experience building or testing Intrusion Detection/Prevention Systems (IDS/IPS) or EDR/XDR platforms.
Automotive Knowledge: Understanding of automotive-specific protocols (CAN, Automotive Ethernet, UDS, etc.) and the ability to implement functional attacks against them.
Show more
Show less
שאלות על המשרה
- המשרה לא ציינה שכר. אנחנו מציגים שכר רק כשהמעסיק מפרסם אותו.
- Proven experience in exposing and exploiting vulnerabilities in complex systems, Hands-on research experience with embedded/low-level systems, Deep understanding of the logic and vulnerabilities within network protocols and the ability to implement functional attacks against them, Strong grasp of cybersecurity principles, including cryptography, Strong scripting and development skills in Python (for research/tooling)