Junior Embedded Vulnerability Researcher

Draper
Cambridge, MA Full Time
POSTED ON 10/12/2024 CLOSED ON 11/18/2024

What are the responsibilities and job description for the Junior Embedded Vulnerability Researcher position at Draper?

Overview

Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 2,000 employees of Draper tackle important national challenges with a promise of delivering successful and usable solutions. From military defense and space exploration to biomedical engineering, lives often depend on the solutions we provide. Our multidisciplinary teams of engineers and scientists work in a collaborative environment that inspires the cross-fertilization of ideas necessary for true innovation. For more information about Draper, visit www.draper.com.

Job Description Summary

Draper’s Offensive Cyber Security Group is looking for Software Cyber Engineer to develop tailored solutions to meet our DoD and IC Sponsor directives. Our organization's not-for-profit status ensures a capability-driven focus on the United States of America's national interests that allows us to address some of our Nation's most pressing challenges. Due to the variety of USG organizational needs, our technical efforts and opportunities vary from conventional cyber operations enablement tooling to embedded vulnerability research and exploit development on a wide range of devices and systems.

The Tailored Systems Business Area within Electronics Program Office directorate delivers first-of-a-kind field-ready microelectronics solutions in support of National Security missions. The Draper team is chartered with supporting the Nation’s most challenging problems by 1) providing an iterative and agile approach to innovative and creative technical solutions delivered at the speed of mission and 2) driving leading edge technology development efforts to support future mission needs. This role will support a large multi-disciplinary team as part of a long-standing, fast-paced contract with history of immense success. Apply to be part of this incredibly talented and dedicated Draper team!

Duties/Responsibilities

Job Description:

  • Assess hardware and software for security vulnerabilities using a breadth of technologies and techniques.
  • Develop software that meets behavior and security requirements for tailored applications.
  • Integrate software capabilities with other tasks or groups to improve performance or behavior requirements.
  • Create new tools and systems to detect and exploit vulnerabilities and system weaknesses.
  • Document nominal application and system functionality, in addition to implemented changes.
  • Independently execute analysis assignments under the oversight of program leadership
  • Contribute content for technical reports and presentations with appropriate guidance
  • Adapt appropriately to changes in program requirements.
  • Identify challenges associated with assigned work and communicate them to project leadership.
  • Performs other related duties as assigned.

Skills/Abilities

  • Curiosity-driven approach to solving complex, customer-driven problems as part of a multi-disciplinary team
  • Collaborate and communicate effectively and openly with multi-disciplinary program team members, program leadership, and non-technical personnel
  • Be a team player able to work in a fast-paced environment with the ability to balance multiple competing tasks and demands

Education

Requires a bachelor's in computer science, computer engineering, or related field.

Experience

0-3 years experience in Cybersecurity or related field is required.

Additional Job Description

Technical Skills:

Program Analysis, Reverse Engineering, and Vulnerability Research

  • Experience with modern program analysis methodologies and techniques
  • Reverse-engineering assessment techniques for firmware or embedded systems
  • Familiarity with binary file and filesystem structures and formats
  • Hands-on experience with reverse engineering tooling such as: Ghidra, IDA, GDB, RR
  • Familiarity with physical instrumentation or hardware modification, soldering
  • Familiarity with JTAG/SWD/BDM, and eMMC/NAND/SPI flash data extraction
  • Knowledge of exploitation techniques for embedded devices across platforms and architectures
  • Familiarity of network stack and internals
  • Familiarity of operating system internals throughout user mode, kernel mode, and during boot processes for at least one of the following: GNU/Linux, RTOS
  • Familiarity with architectures and assembly: x86, ARM, Hexagon, PowerPC

Languages And Development

  • Proficiency with programming languages such as: C, C , Python, Java
  • Familiarity with scripting languages such as: Bash, Powershell
  • Familiarity in development environments for GNU/Linux or Windows

Preferred Qualifications

  • Familiarity with side channel attacks (glitching) to place components and/or devices into altered states to bypass protections.
  • Familiarity with custom filesystem extraction and modification, removal and/or regeneration of OOB/CRC data.
  • Familiarity with bus and protocol analysis.

Candidates will be required to obtain and maintain a government security clearance

Connect With Draper for Future Opportunities! If you don't find the right posting in our Career Opportunities, you may submit your resume for future consideration.

Job Location - City:

Cambridge

Job Location - State:

Massachusetts

Job Location - Postal Code:

02139-3563

Our work is very important to us, but so is our life outside of work. Draper supports many programs to improve work-life balance including workplace flexibility, employee clubs ranging from photography to yoga, health and finance workshops, off site social events and discounts to local museums and cultural activities. If this specific job opportunity and the chance to work at a nationally renowned R&D innovation company appeals to you, apply now www.draper.com/careers.

Equal Employment Opportunity

Draper is committed to creating a diverse environment and is proud to be an affirmative action and equal opportunity employer. We understand the value of diversity and its impact on a high-performance culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information. Draper is committed to providing access, equal opportunity and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation, please contact hr@draper.com.
Researcher
City Connects, Center for Thriving Children -
Boston, MA
Scientist, Human Computer Interaction (HCI/HMI)
Innovative Embedded Systems Pvt. Ltd. (SIIC IIT Kanpur). -
Cambridge, MA
Scientist, Computational Linguistics / NLP
Innovative Embedded Systems Pvt. Ltd. (SIIC IIT Kanpur). -
Cambridge, MA

For Employer
Looking for Real-time Job Posting Salary Data?
Keep a pulse on the job market with advanced job matching technology.
If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

What is the career path for a Junior Embedded Vulnerability Researcher?

Sign up to receive alerts about other jobs on the Junior Embedded Vulnerability Researcher career path by checking the boxes next to the positions that interest you.
Income Estimation: 
$76,438 - $92,787
Income Estimation: 
$95,804 - $118,468
Income Estimation: 
$80,266 - $90,539
Income Estimation: 
$90,377 - $105,109
Income Estimation: 
$90,377 - $105,109
Income Estimation: 
$117,217 - $130,902
Income Estimation: 
$117,217 - $130,902
Income Estimation: 
$145,245 - $167,196
This job has expired.
View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

Job openings at Draper

Draper
Hired Organization Address Cambridge, MA Full Time
Overview Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 2,000 ...
Draper
Hired Organization Address Cambridge, MA Full Time
Overview: Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 2,000...
Draper
Hired Organization Address Cambridge, MA Full Time
Overview Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 2,000 ...
Draper
Hired Organization Address Lowell, MA Full Time
Overview Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 2,000 ...

Not the job you're looking for? Here are some other Junior Embedded Vulnerability Researcher jobs in the Cambridge, MA area that may be a better fit.

Junior Embedded Vulnerability Researcher

The Charles Stark Draper Laboratory, Inc., Cambridge, MA

Senior Embedded Vulnerability Researcher

Draper Labs, Cambridge, MA