Remote Security Research Engineer – Embedded Systems Job in UK CENSUS

Who you are

• MSc or BSc in Electrical Engineering, Computer Science, Computer Engineering, Electronics Engineering, or equivalent practical experience
• 8+ years of experience in embedded, general- or special-purpose computer system-level software or firmware security
• 2+ years experience in embedded systems or platform security research projects
• Proficient in English with great communication skills
• In-depth exposure to Embedded Systems, Linux, or Real Time Operating systems security concepts
• Experience with ARM architectures & platforms
• Programming language experience with C, C++, Rust, or Assembly (ARM or x86) within system firmware/software
• Experience with reverse engineering, fuzz testing, and debugging
• Experience with TEE, TPM, SE, SPU, and other related technologies
• Experience with secure boot, firmware & software integrity, OTA updates, and hardware-backed device attestation
• Experience with HW-backed security features for system hardening
• Identifying and reporting vulnerabilities in system firmware/software
• Analytical thinking, scientific mindset, ownership, problem-solving skills, and willingness to learn or grow

Desirables

• Cryptographic primitives
• Edge & cloud confidential computing technologies
• Hardware or software side-channel attacks
• RISC-V architectures & platforms
• Experience with international teams located in other regions and time zones around the world

What the job involves

• You will steer our clients towards efficient concepts, architectures, implementations, and integrations, to satisfy their cybersecurity goals
• You will work side-by-side with our clients' development, security teams and partners under long-term projects
• You will assess security maturity, fitness, and capabilities across multiple technologies, frameworks, protocols, and implementations
• You will identify security inefficiencies, architecture/design defects, or vulnerabilities
• You will research, review, compare, and propose technologies that align with the client's requirements and strategies
• You will document and present product security risks in technical and business-oriented language