Hardware Security Consultant //United States [Remote]

DigitalTek Solutions is a staffing company providing technical & non-technical recruitment solutions with over 10 years pertaining to the statement of work-based managed services staffing, staff augmentation and IT consulting services to 1000 fortune companies within North America. 

Our niche is top-notch talent acquisition for Information technology, Engineering and the Digital sector within banking, financial, insurance, capital markets, telecom, manufacturing, utility & energy and plenty of other domains in NAM and LATNAM regions.

LinkedIn: Follow us on LinkedIn for latest job updates on C2C, 1099, W2 and Permanent/Fulltime

Sponsorship: Our clients will sponsor visa applicants; one must be open to relocate or travel within USA on reimbursed expenses.

Terms: Long term contract and/or Full time/Permanent.

Role: Hardware Security Consultant
Location: United States [Remote]

• An experienced security professional with a strong foundation of information security knowledge and an expert practitioner in performing manual penetration testing.
• Industry expert with 8+ years of relevant security experience (consulting experience strongly preferred) or Bachelor's degree in Computer Science/Engineering with 5 years of relevant security experience.   
• Possess in-depth understanding of hardware components, network protocols and protection mechanisms
• Experience with soldering / desoldering hardware components and extraction of embedded device flash chips.
• Experience with firmware extraction techniques including man-in-the-middle network attacks, memory access attacks, firmware upgrade attacks, and using hardware debugging interfaces such as JTAG, UART, USB, and NAND flash chip reader.
• Experience with firmware extraction, firmware reverse engineering, analysis and identification of security vulnerabilities.
• Proficiency with software debugging tools such as, Binary Ninja, gdb , IDA Pro to analyze device software and firmware.
• Should have hands on experience with using hardware hacking tools such as Jtagulator, facedancer, hackRF etc.
• Experienced in performing manual security assessment of the key elements of modern telecommunication systems and network infrastructure, such as PBX, VOIP, VPN, wired and wireless, BLE, PLC, NFC, RFID, Z-WAVE, Zigbee, LoRaWAN, IoT communication
• Familiar with Metasploit, Burp Suite, Nmap, and security assessment focused Linux distributions, such as Kali
• Familiarity with Telco security domain specially in areas of 5G, SD-WAN, RAN etc. a strong plus
• Comfortable working in Windows and Linux server operating systems.
• Knowledge of programming and the ability to automate tasks in at least one language, including but not limited to Ruby, Python, Powershell, or BASH
• Industry certifications such as GPEN, OSCP is preferred
• Familiarity with mobile/embedded operating systems a strong plus  
• Excellent communication (written and oral) and interpersonal skills  
• Strong organizational, multi-tasking, and time-management skills  
• Desire to learn and grow skills.