Product Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Inmar Intelligence · 3 days ago

Product Security Engineer

positionUnited States
timeFull-time
remoteOnsite
senioritySenior Level
money$111K/yr - $185K/yr
date5+ years exp

Inmar Intelligence is seeking a Product Security Engineer responsible for conducting comprehensive security assessments on various products, including mobile applications and IoT hardware. The role involves identifying vulnerabilities, developing mitigation strategies, and collaborating with cross-functional teams to enhance security.

Computer Software
badNo H1Bnote

Responsibilities

Conduct comprehensive security assessments of mobile applications, IoT hardware / firmware, compiled software and browser extensions
Perform reverse engineering and vulnerability analysis, and penetration testing to uncover security risks
Analyze binary file formats (PE, ELF, Mach-O) and runtime behaviors for security flaws
Review browser extensions and software plugins for security flaws and compliance with best practices
Perform product data analysis to identify potential vulnerabilities and determine access scope
Collaborate with cross-functional teams (e.g. - engineering, product, and security) to enhance security measures and improve resilience against cyber threats
Develop and recommend mitigation strategies and risk profiles for identified vulnerabilities
Document findings and communicate security recommendations to both technical and non-technical audiences
Maintain organizational product inventory with security assessment status and secure configuration requirements
Responsible for the production and maintenance of security documentation, such as bill of material repositories and analytical procedure guides

Qualification

Security assessmentsReverse engineeringVulnerability analysisPenetration testingBinary file formatsNetwork traffic analysisLow-level data extractionLinux toolsAnalytical skillsInnovative thinkingProblem-solvingCommunication skillsAdaptability

Required

Bachelors of Science in a related field, such as Computer Science, Electrical Engineering, or Cyber Security
5-7 years of relevant experience in software exploitation, reverse engineering, malware analysis, or related field; or any equivalent combination of experience and training that provides the required knowledge, skills, and abilities needed to complete the primary job responsibilities
Proficient in using debuggers, decompilers, and disassemblers to analyze code for vulnerabilities across various CPU architectures, including ARM and RISC-V
Strong understanding of binary file formats like PE, ELF, and Mach-O, enabling analysis of applications for security flaws
Skilled in low-level data extraction and analysis using tools like QEMU and Verilog to identify and verify vulnerabilities through emulation
Knowledgeable about Linux loaders, binary packing, and embedded systems tools such as BusyBox, binwalk, and u-boot
Experienced in capturing and analyzing network traffic, including using tools like tcpdump and Scapy to dissect proprietary protocols
Experienced in BOM enumeration and leveraging tools like CycloneDX for inventory and risk assessment
Strong analytical and problem-solving skills, with a keen eye for identifying and mitigating security risks
Excellent communication skills for documenting findings, providing security recommendations, and effectively disclosing vulnerabilities to technical and non-technical audiences

Preferred

Prior experience working in cybersecurity research or security assessment functions
Experience with application security testing and associated static and dynamic analysis tools
Knowledge of cryptographic principles and secure coding practices
Familiarity with security assessment frameworks and compliance standards
Prior experience with radio signals analysis and associated security hardening methodologies

Benefits

Medical, Dental, and Vision insurance
Basic and Supplemental Life Insurance options
401(k) retirement plans with company match
Health Spending Accounts (HSA/FSA)
Flexible time off and 11 paid holidays
Family-building benefits, including Maternity, Adoption, and Parental Leave
Tuition Reimbursement and certification support, reflecting our commitment to lifelong learning
Wellness and Mental Health counseling services
Concierge and work/life support resources
Adoption Assistance Reimbursement
Perks and discount programs

Company

Inmar Intelligence

twitter
Glassdoor3.7
company-logo
Welcome to Inmar Intelligence, recently certified a Great Place to Work®! Through curiosity and the intelligent use of data and technology, we make businesses smarter to improve consumers’ lives.
dateFounded in 1980
location
Winston-Salem, NC, US
people-size1001-5000 employees
web-link
http://www.inmar.com

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Rich Schmidt
Chief Financial Officer
linkedin
leader-logo
Berit Mann, MA
Client Development & Partnership Management Lead (Post-Purchase Solutions)
linkedin

Recent News

Business Journals
EXCLUSIVE: Inmar Intelligence CEO says company will hit $1B this year
2024-05-06
stoppress.co.nz
NZME’s work recognised at INMA Global Media Awards
2024-04-27
PRWeb
Inmar Intelligence's Automotive Data Science Now Available Through Orbee
2024-02-06
Company data provided by crunchbase