Dark Wolf Solutions is hiring a
Junior Product and Hardware Security Penetration Tester, United States

Summary

The job is for a Junior Product and Hardware Security Penetration Tester at Dark Wolf Solutions in Colorado Springs, CO. The role requires 3+ years of penetration testing experience, proficiency in firmware analysis, reverse engineering, and binary exploitation, and hands-on experience with wireless and RF security testing. Desired qualifications include a Bachelor’s degree in Cybersecurity, Information Technology, or a related field, the ability to develop complex exploits, strong analytical skills, effective communication skills, and relevant certifications.

Requirements

• Minimum of 3 years’ experience in penetration testing and vulnerability assessment
• Proficiency in firmware analysis, reverse engineering, and binary exploitation
• Experience in web application security testing and API security assessments
• Hands-on experience with wireless and RF security testing
• Advanced knowledge of Software Defined Radio (SDR) and protocol reverse engineering
• US Citizenship and Clearable at a minimum of the Secret Level

Responsibilities

• Conducting comprehensive penetration testing on hardware, software, and network components
• Performing advanced vulnerability scanning and assessments on all components
• Cybersecurity evaluation of the product under test to identify vulnerabilities that would negatively impact Confidentiality, Integrity, or Availability of system data or functionality
• Analyzing software, firmware, hardware, and/or RF components within the system
• Opining on the impact and level of effort required to exploit the identified vulnerabilities as well as providing information on a high-level remediation strategy
• Developing and executing exploits and proof-of-concept (PoC) attacks to demonstrate the impact of identified vulnerabilities
• Analyzing and reverse engineering firmware and embedded systems to identify security weaknesses
• Testing and assessing the security of secure boot processes and Trusted Execution Environments (TEE)
• Performing web application security assessments, focusing on OWASP Top Ten vulnerabilities and API security testing
• Performing manual verification of vulnerabilities, assessing their risk and exploitability
• Engaging in wireless and RF security testing, including penetration testing on Wi-Fi, Bluetooth, and Zigbee networks
• Utilizing Software Defined Radio (SDR) for protocol reverse engineering and testing
• Reporting detailed findings and providing actionable recommendations for remediation to enhance product security

Preferred Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, or a related field
• Proven ability to develop and execute complex exploits
• Strong analytical skills and experience in firmware and embedded systems testing
• Effective communication skills, with the ability to present findings and recommendations clearly
• Certifications such as OSCP, PNPT, GPEN or similar are highly desirable

Benefits

The salary range for this position is $100,000.00 - $150,000.00 commensurate on experience and technical skillset