嵌入式安全工程师 Lead Embedded Security Engineer

Click link below to apply job 点击下方链接申请岗位

OneKey Recruit - Onekey 招募

职位要求 Job Requirements

说明 Description

职位要求 Job Requirements

说明 Description

中文 Chinese

希望你能对这些内容相当熟悉

  1. 本科及以上学历;5年以上嵌入式经验

  2. 拥有芯片、设备、应用的攻击或渗透测试实践经验,并能够熟练使用各类模糊测试的方法;熟悉主流的算法原理,以及在嵌入式系统上的应用

  3. 掌握 C/Python 语言,数据结构,算法等基础知识扎实,具有良好的编程风格和文档编制习惯

  4. 安全硬件产品的嵌入式软件的设计、开发和测试

  5. MCU/SoC 安全开发经验,包括但不限于:安全引擎、启动、调试、存储、升级、生产等

职责

  1. 嵌入式平台上数据存储安全保护方案的设计和开发

  2. 在嵌入式平台上移植应用安全算法

  3. 嵌入式平台固件的防拷,防改,和安全升级方案的设计和开发

  4. 分析和研究 IoT 领域设备安全防入侵、防篡改技术,以及在产品开发中借鉴实现

  5. 研究和分析现有产品的安全弱点并设计和改进产品安全方案

加分项

  1. 硬件钱包开发经验,熟悉 Trezor

English

You are familiar with these

  1. Bachelor degree or above; more than 5 years of embedded experience

  2. Practical experience in attack or penetration testing of chips, devices, and applications, and proficiency in using various fuzzy testing methods; familiar with the principles of mainstream algorithms and their application on embedded systems

  3. Master C/Python language, solid basic knowledge of data structures and algorithms, good programming style and documentation habits

  4. Design, development and testing of embedded software for secure hardware products

  5. MCU/SoC security development experience, including but not limited to: security engine, boot, debug, storage, upgrade, production, etc.

Responsibilities

  1. Design and development of a data storage security protection scheme on an embedded platform

  2. Porting application security algorithms on embedded platforms

  3. Design and development of anti-copy, anti-tamper, and security upgrade solutions for embedded platform firmware

  4. Analysis and research of anti-intrusion and anti-tampering technologies for device security in IoT domain, and their implementation in product development

  5. Research and analyze the security weaknesses of existing products and design and improve product security solutions

Nice to have

  1. Hardware wallet development experience, familiar with Trezor