Support Us

Offensive Security Engineer

Dev & EngineerComputer ScienceElectrical Engineering

Position Description: We are looking for creative, growth minded, team oriented, and highly motivated full-time/part-time offensive security researcher who can consistently deliver high-quality work in a fast-paced environment of technology startup. You will be working with our product development and R&D team and contributing to in-depth adversarial analysis of architecture, focusing on system level security, spanning hardware and software layers, identifying potential attack vectors, and developing innovative automated exploitation techniques. The role demands a keen analytical mind, strong problem-solving skills, and a passion for pushing the boundaries of offensive security in the hardware domain.

Minimum Degree Requirement:

Bachelor degree in computer engineering, Computer Science, Electrical Engineering, or similar field from an accredited university is required.

Required Competencies: 

  • In-depth knowledge of Computer Architecture and Micro-Architecture.
  • Experience with RISC-V, x86, and/or ARM assembly paired with understanding of design documentation.
  • Vulnerability Assessment, including understanding and experience with micro-architectural attacks.
  • Simulate/Emulate real attacker behavior, break systems by exploiting design assumptions.
  • Understanding of CWEs and CVEs.
  • Assertion Writing.
  • Writing Test Benches.
  • Excellent analytical and problem-solving skills, with the ability to think creatively and identify security weaknesses in complex systems.
  • Strong communication skills, both written and verbal, with the ability to articulate complex security concepts and findings to technical and non-technical stakeholders.

Preferred Competencies:

  • Analyze composed systems to identify high risk components and established testing targets and objectives.
  • Experience on Formal Verification tools.
  • Understanding of CWEs and CVEs.
  • Assertion Writing.
  • Writing Test Benches.
  • Excellent analytical and problem-solving skills, with the ability to think creatively and identify security weaknesses in complex systems.
  • Strong communication skills, both written and verbal, with the ability to articulate complex security concepts and findings to technical and non-technical stakeholders.
  • Reverse engineering and automation (IDA, Ghidra), fuzzing, exploitation (ROP, memory corruption.

Responsibilities:

  • Conduct In-depth Analysis.
  • Develop Exploitation Techniques.
  • Write Assertions for Verification.
  • Contribute to Mitigation Strategies.
  • Develop and Execute Test Benches.
  • Stay Current with Emerging Threats.
  • Communicate Security Concepts Effectively.

Working Model: This role is available as remote and generally would require you to travel occasionally based on business need. The option to work from office at Orlando or Gainesville locations is also available. In certain circumstances the work model may change to accommodate business needs.

Apply
cropped-SA-Logo
Silicon Assurance
<10 Employees
Silicon Assurance LLC is a hardware security company that provides computer-aided design (CAD) tools to mitigate the security challenges facing the semiconductor industry and its customers. We strongly believe that...