Security Engineer-2

Overview

Test and secure embedded hardware/firmware, conduct pentests, and support product security.

Key Responsibilities

• penetration testing
• security testing
• binary reversing
• threat modeling
• supply chain
• security analysis

Tasks

-Conduct manual penetration testing, including but not limited to: -Perform product security testing and reporting, including but not limited to: -Binary Reverse Engineering of ARM, MIPS, and PowerPC firmware using industry-standard tools such as IDA Pro, Binary Ninja, Ghidra, etc. -Maintain documentation and metrics for the product security program’s services. -Facilitate threat modeling with Copeland application, infrastructure, and product teams. -Perform security training and outreach to internal development teams. -Perform security analysis & evaluation of ICS/OT environments related to product manufacturing. -Perform security analysis & evaluation of both hardware and software supply chains. -Black box reverse engineering of hardware and firmware

Requirements

• fuzz testing
• red team
• iot
• embedded linux
• python
• 5+ years

What You Bring

-Experience in Fuzz Testing of industrial communication protocols like Wi-Fi / BLE / Wireless HART / PROFINET/ MODBUS / Ethernet IP/ OPC UA/ HART /FF -Experienced planning and executing Red Team exercises. -Understanding of cloud solutions and architectures supporting IoT and Edge computing environments -Understanding network, web, IoT, and industrial-related protocols (such as TCP/UDP, HTTPS, MQTTS, CoAP, Modbus, Ethernet/IP, DNP3, OPC-UA, etc.) -Experience conducting security testing of embedded hardware and the ability to identify and manipulate debug interfaces (UART, JTAG, SWD, etc.) and peripheral buses (SPI, I2C, etc.) -Working knowledge of cybersecurity policies and standards related to ICS/SCADA. -Experience with OT adversary emulation. -Understanding of secure libraries (e.g., bootloader, etc.) -Mobile Applications (iOS & Android) -Strong sense of ownership, urgency, and drive -Experience with programming languages such as, Python, C#, C/C++, Ruby, Assembly, etc. -Sharp analytical skills with the ability to synthesize new information quickly. -Minimum of 5 years of experience with any combination of the following: embedded systems and IoT security, red teaming, or penetration testing -Protocol reverse engineering -Fuzz testing -Experience with OT network monitoring, including serial, Ethernet, wireless, etc. -Knowledge of embedded Linux required, knowledge of Real-Time Operating Systems a plus. -Excellent written and verbal communication skills.

People Also Searched For

About Copeland

-They are a trusted name in providing advanced solutions for both residential and commercial sectors. -Their products range from energy-efficient compressors to cutting-edge refrigeration technology. -Copeland has been a key player in the global push for sustainability, offering energy-saving solutions. -The company frequently partners with global brands, delivering impactful projects in industrial and commercial sectors. -They are known for creating custom solutions tailored to the unique needs of each project. -A standout achievement includes their work in the energy and utilities sectors, delivering high-efficiency cooling and heating solutions. -Copeland’s legacy is built on innovation, quality, and a commitment to improving refrigeration technology.

Sector Specialisms