TS Senior Security Engineer

Looking for a candidate with skills in product evaluation. Core areas our lab is involved in are IOT and PCI, both align with strong understanding of cryptography, ability to read and interpret requirements / customer documentation and report writing. Additional skills that are beneficial include hardware and embedded programming experience.

Common expectations:

Interpretation of standards, experience with either 18031 or PCI programs (PTS / SPoC / CPoC / MPoC).

Android experience – development / debugging, ideally experience in securing applications.

Providing feedback to customers, both written and verbal depending on customer expectations.

Ability to perform defined tests (vary based on program).

Keep up-to-date test records and records of analysis performed.

Target-driven methodological approach to meet customers' demand.

Maintains/improves technical knowledge by attending educational workshops, reviewing professional publications, obtaining applicable certifications and participating in professional societies and cross-departmental task forces.

Read and follow the Underwriters Laboratories Code of Conduct and follow all physical and digital security practices.

Performs other duties as directed.

Technical understanding of security aspects including Wi-Fi Security protocols (WEP / WPA / etc) and cryptography to at least a moderate level.

We are looking for either an engineer experienced with PCI programs defined above, or with RED experience (or both).

PCI Specific.

At least 6 months in-depth involvement with one of the PCI programs detailed above.

Implement sophisticated attacks requiring multiple techniques such as vulnerability analysis, signal processing, FPGA, optical, and others.

Undertake security evaluation attacks on smart cards or embedded systems.

The main activity will be the real product analysis with the aim to highlight its strengths and weaknesses.

Specialize in the realization of innovative physical attacks using laser or EM techniques, in-depth understanding on how the products work with the aim to stress them using complex hardware techniques.

Work closely with customers to meet their requirements; including producing expertise reports on the findings.

Follow-up with the latest technical developments in the physical attacks area that need to be contributed to the internal R&D developments in hardware (analogue and digital electronics) and software (C, C#, and others) to enhance the level of our attacks and to explore new forms of attacks.

Provide high-level technical support in areas like test planning and logistics, update of test procedures, training and resolution of quality issues.

IOT Specific.

Transform customer-provided information into a final assessment report.

Keep up-to-date test records and records of analysis performed.

Understanding a variety of customer products, assets and protections, and being able to provide guidance to customers on areas this is insufficient.

Qualifications:

University Degree (Equivalent to Bachelors Degree) in Electronic/Computer Science/Computer Engineering/Electrical Engineering or a related discipline plus 3-5 years of related experience.

Familiarity with IOT standards such as RED (18031) or PCI programs (PTS / SPoC / CPoC / MPoC).

A self-motivated team player who is able to work independently and likes to bring new ideas for technical development.

Good skills in embedded software preferred.

Experience in hardware development or in a laboratory environment and skills in developing codes in different languages (C, C++, assembly) preferred. Familiar with test equipment and working in a multi-skills environment mixing electronic, optical, security, mechanical, and IT.

Salary match Number of applicants Skills match

Your application will include the following questions:

Which of the following statements best describes your right to work in Australia? How many years' experience do you have as a Security Engineer? What's your expected annual base salary? How much notice are you required to give your current employer? Are you willing to undergo a pre-employment medical check?

To help fast track investigation, please include here any other relevant details that prompted you to report this job ad as fraudulent / misleading / discriminatory.