IoT / ICS / OT Penetration Tester
F
Finite StateCybersecurity
United States or CanadaFull-TimeSenior
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years
- Required Skills
- PythonBashC++
Requirements
- Bachelor's degree in Computer Science, Electrical Engineering, Computer Engineering, or a related field.
- 5+ years of hands-on experience in IoT, embedded, ICS/OT, or automotive security.
- Proficiency with hardware-level security assessments including JTAG/SWD debugging, SPI/I2C/UART communication, and PCB soldering/rework.
- Expertise in firmware reverse engineering using Ghidra and/or Binary Ninja.
- Ability to analyze ARM, MIPS, PPC, x86, and x64 architectures.
- Experience testing wireless protocols such as BLE, Zigbee, Z-Wave, Wi-Fi, CAN bus, and cellular interfaces.
- Strong proficiency in reading and reviewing C and C++ source code.
- Familiarity with SBOM concepts and standards like CycloneDX or SPDX.
- Knowledge of security regulations such as EU CRA, CE RED, UNECE WP.29, or ISO 21434.
- Scripting and automation skills using Python and Bash.
- Excellent technical writing and verbal communication skills.
Responsibilities
- Plan and execute penetration tests and security assessments against IoT, ICS/OT, and automotive targets.
- Perform hardware interaction and firmware extraction using techniques such as JTAG, SWD, UART, SPI, I2C, and eMMC.
- Conduct firmware reverse engineering using tools such as Ghidra and Binary Ninja to identify vulnerabilities.
- Assess wireless protocols including Bluetooth/BLE, Zigbee, Z-Wave, Wi-Fi, Cellular, CAN bus, and automotive Ethernet.
- Perform source code review in C and C++ to identify security weaknesses.
- Produce high-quality technical reports for both technical and executive audiences.
- Collaborate with engineering teams to improve detection capabilities within the Finite State platform.
View Full Description & ApplyYou'll be redirected to the employer's site