System Security Engineer

at  Idaho Scientific

POSITION DESCRIPTION.

A Senior System Security Engineer (SSE) is a, industry-recognized, subject matter expert on the topics of anti-tamper, cyber security, and supply chain trust. A successful candidate will possess implementation level details of vulnerabilities and their countermeasures across a wide range of system types including microcontrollers, FPGA based system-on-chip (SoC) system, and workstation grade single board computers. Idaho Scientific is equally interested in physical and virtual threat vectors.

REQUIRED QUALIFICATIONS & EXPERIENCE

• US Citizenship
• Ability to get a security clearance
• More than five (5) years of proven past performance in embedded systems security design; preference given to candidates who have experience with US Department of Defense (DoD) embedded systems security
• Advanced knowledge of crypto algorithms, when and how to use each algorithm, vulnerabilities of each algorithm and vulnerabilities inherent to an implementation of each algorithm
• Advanced knowledge of attacks and vulnerabilities against hardware and software, as well as an understanding of balancing solutions with acceptable residual vulnerabilities
• Advanced understanding of computer hardware and software architectures, including being able to clearly articulate how a CPU works, how a FPGA works, how Operating Systems work and how user space application runtime environments work
• Experience with key generation and key management solutions
• Familiarity with latest research in secure boot services and why additional research is needed
• Degree in Cryptography, Computer Engineering, Computer Science, Electrical Engineering, Mathematics or related field
• Ability to clearly capture complex technical concepts in writing for both technical and general audiences
• Strong analytical and problem-solving skills
• Must be highly creative and have experience interfacing directly with external customers

PREFERRED QUALIFICATIONS & EXPERIENCE

• Active US Security Clearance
• Working knowledge of applied cryptography
• Experience applying principles of cyber security to operational technology and embedded systems
• Experience reverse engineering hardware and software
• Experience developing program protection plans for US weapons systems
• Experience with software assurance, system integrity, trust strategies, supply chain exploitation methods and countermeasures and/or general vulnerability analysis
• Experience with CPU design, preferably Intel x86
• Knowledge of Operating System architecture and design, Linux preferred

• Individual Contributions
• Evaluate proposed or existing system architectures for reverse engineering and cyber exploitation vulnerabilities
• Document vulnerabilities in white papers and attack countermeasure analysis
• Recommend architectural changes to reduce system vulnerabilities
• Architect system level security design and requirements to address the vulnerabilities enumerated within U.S. weapon systems.
• Document system design and requirements within a program protection plan and anti-tamper plan
• Develop Crypto and Key management plans
• Prepare for, attend, and brief and customer and government design review meetings
• Participate in all aspects of the product design life cycle including system architecture, design, development, and verification
• Distill complex technical concepts into clear and concise writing to support proposals for new opportunities
• Contribute to new product ideas and proposals
• Advising, mentoring, and training
• Stay current with threat, vulnerabilities, countermeasure, hardware and software architecture
• Advise and train customers on system vulnerabilities and countermeasures enabling them to design and requirements to secure their architectures
• Advise customers on security and design principles, best practices, and system security engineering processes and approvals
• Participate in industry working groups and provide security recommendations to relevant government and commercial standards, policies, and procedures
• Participate in development and delivery of internal and external training efforts