Back to Jobs
United States of America Remote (Global)

EndoSec LLC is hiring a Hardware Security and Vulnerability Analyst

About the Role

Role Overview

This position centers on uncovering and analyzing security flaws in hardware, firmware, and embedded platforms. The analyst conducts in-depth technical assessments to expose weaknesses that could compromise system integrity. Work includes hands-on experimentation, low-level code analysis, and developing methods to test the resilience of security controls.

Key Responsibilities

  • Examine hardware and embedded systems to map functionality, identify failure modes, and assess potential impacts of exploitation.
  • Defeat existing security mechanisms to access protected data, including enabling debug interfaces, circumventing signature checks, and escalating privileges under controlled conditions.
  • Retrieve firmware and executable code from devices and inspect them for vulnerabilities, hardcoded credentials, or embedded cryptographic material.
  • Conduct side-channel analysis to capture and interpret data leaks, such as power variations or timing signals, to extract sensitive information like encryption keys.
  • Implement fault injection techniques to disrupt normal operation and bypass security checks or unlock restricted functionality.
  • Create custom exploits that demonstrate the practical impact of discovered flaws, focusing on privilege escalation, data recovery, or control bypass in embedded environments.
  • Document test setups, procedures, and findings in detail to ensure results can be replicated and maintained over time.
  • Keep pace with emerging research and tools in hardware reverse engineering and physical security to maintain technical edge.

Qualifications

Candidates must be eligible to obtain and retain a U.S. Government Security Clearance. Technical familiarity with low-level programming and hardware analysis is essential.

Preferred expertise includes proficiency in C/C++, Python, and assembly languages; experience with reverse engineering tools such as IDA Pro or Ghidra; and knowledge of FPGA systems, cryptography, embedded software, and physical attack methods including side-channel and fault injection techniques.

Required Skills
C/C++PythonassemblyIDA ProGhidraFPGAcryptographyhardwareembedded softwarehardware securityreverse engineeringside channel attacksfault injection C/C++PythonassemblyIDA ProGhidraFPGAcryptographyhardwareembedded softwarehardware securityreverse engineeringside channel attacksfault injection
Starting a business in Thailand?

Company registration done right

Foreign ownership rules, licenses, tax registration — Thai business setup has many moving parts. SVBL guides you through every step with full legal compliance.

Company registration & structure
Foreign ownership solutions
License & tax registration
BOI promotion eligibility
Start your business
100% foreign ownership possible
About company
EndoSec LLC
All jobs at EndoSec LLC Visit website
Job Details
Department Engineering
Category security
Posted 3 months ago

Similar Jobs

Other opportunities you might be interested in

NielsenIQ

Cybersecurity Engineer

NielsenIQ

Madrid or Barcelona
CENSUS

Internship Vulnerability Researcher

CENSUS

Thessaloniki Hybrid
Trellix

Solution Consultant

Trellix

United States
EndoSec LLC

Hardware Security and Vulnerability Analyst

EndoSec LLC

Remote Remote (Global)
Roke

Cyber Software Engineer

Roke

Romsey On-site
EndoSec LLC

Hardware Security Analyst

EndoSec LLC

Colorado Springs Remote (Global)

Related Articles

Insights related to this role

Workspace setup for an AI developer, showing dual monitors with code and neural networks, symbolizing the AI developer career path.
Career Growth

Become an AI Developer: Your Career Guide

5 min 16 days ago