Senior Security Researcher - Hardware

About KATIM

KATIM is a leader in the development of innovative secure communication products and solutions for governments and businesses. As part of the Space & Cyber Technologies cluster at EDGE, one of the world’s leading advanced technology groups, KATIM delivers trust in a world where cyber risks are a constant threat and fulfils the increasing demand for advanced cyber capabilities by delivering robust, secure, end-to-end solutions centered on four core business units: Networks, Ultra Secure Mobile Devices, Applications, and Satellite Communications. Our talented team of cross-functional experts continually takes on new challenges. We work with the energy of a start-up yet the discipline of a large business to make solutions and products work for our customers at scale. The Senior Hardware Security Researcher will be responsible for conducting advanced security research to provide comprehensive security testing and vulnerability assessments of various hardware products, services, and systems. The role demands a deep understanding of hardware security, including hardware penetration testing, hardware exploitation, secure hardware design practices, and advanced threat modeling.

Key Responsibilities
    Key Focus Areas  

Lead and Conduct Hardware Security Research    - Perform in-depth security research on hardware devices, identifying vulnerabilities and developing proof-of-concept exploits. 
- Analyze complex hardware systems to understand how they work, where they have weaknesses, and how vulnerabilities can be mitigated. 
- Conduct research on new techniques, security mitigations, and identifying zero-day vulnerabilities.
Hardware Security Testing and Assessment    - Conduct comprehensive security assessments, including side-channel analysis, fault injection testing, and reverse engineering. 
- Develop and improve security assessment methodologies and tools. 
- Perform hardware design reviews to identify security flaws and recommend remediation strategies. 
- Utilize advanced tools and techniques such as electromagnetic analysis, power analysis, and hardware debuggers.
Project Management    - Coordinate and lead medium to large hardware security testing projects, ensuring timely and quality delivery of security assessments. 
- Supervise the development of security research and evaluation plans and schedule security testing activities.
Collaboration and Communication    - Work closely with cross-functional teams to gather requirements, provide security guidance, and ensure secure hardware development practices. 
- Produce detailed security reports, advisories, and white papers, and present findings to both technical and non-technical audiences. 
- Collaborate with external stakeholders, including certification bodies and industry partners, to stay abreast of the latest security standards and practices.
Mentorship and Development    - Mentor and coach junior researchers and colleagues in your area of expertise. 
- Foster a culture of continuous learning and improvement within the team.
Client Relationship Management    - Nurture relationships with clients, understanding their needs, and delivering high-quality security research and evaluation work.
Innovation and Continuous Improvement    - Stay updated with the latest security trends, technologies, and methodologies. 
- Contribute to the development of innovative security solutions and best practices.

Job Specifications
Education    BS/MS/PhD in Electrical Engineering, Computer Engineering, Information Security, or a related field, or the equivalent in experience and evidence of exceptional ability.
Minimum Work Experience    Combined 5+ years of experience in hardware security research and security assessment.
Experience in people management and security project management.
Skills/Certifications (Technical & Non-Technical)    Technical Expertise: 
- Deep understanding of hardware security vulnerabilities, threats, and attack vectors. 
- Proficiency in hardware penetration testing, hardware exploitation, and secure hardware design practices. 
- Experience with security assessment tools and methodologies, such as side-channel analysis, fault injection testing, and reverse engineering. 
- Knowledge of various hardware description languages (e.g., VHDL, Verilog) and their associated security pitfalls. 
- Familiarity with modern hardware development practices, including FPGA and ASIC design, and hardware security modules (HSMs). 
- Experience with cryptographic algorithms and protocols, including their implementation and common vulnerabilities. 
- Proficiency in tools and techniques such as electromagnetic analysis, power analysis, and hardware debuggers. 
- Expertise in hardware security testing tools (e.g., ChipWhisperer, Riscure Inspector). 
- Advanced skills in reverse engineering tools (e.g., JTAG, UART, SPI). 
- Network security tools (e.g., Wireshark, Snort). 
- Experience with symbolic execution, automated vulnerability scanning, and reverse engineering. 
- Proficiency in scripting and automation using languages such as Python, Bash, or PowerShell. 
- Familiarity with hardware security practices and tools. 
- Experience in developing security assessment tools and scripts to automate testing processes. 

Interpersonal and Management Skills:  
- Excellent interpersonal skills with the ability to manage a variety of cross-functional team members. 
- Strong organizational and follow-up skills, with the ability to handle multiple projects simultaneously. 

Communication Skills: 
- Excellent written and verbal communication skills, including the ability to convey highly technical information to non-technical audiences. 
- Competent in problem-solving and planning.

#KATIM