SGS
vacanciesineu.com
Company Description
Devices that store secure data require protection on both hardware and software level. Thorough security evaluation on Integrated Circuits, software applications and systems is mandated by industry schemes and organisations, to protect sensitive data. Without certification, security products cannot be launched.
SGS Brightsight offers security evaluations and certificates on behalf of the major payment schemes and industry organisations to ensure the right level of security is obtained. These services are provided to IC manufacturers, (embedded) secure device manufacturers, card suppliers and service providers. SGS Brightsight can assure the turn-round time of product evaluations that the customer needs, because it has the most accreditations from industry organisations, the largest team of security evaluators and the most extensive evaluation equipment.
SGS Brightsight is the number one independent security lab in the world. We are now based in Delft (The Netherlands), Barcelona and Madrid (Spain), Graz (Austria), Meyreuil (France), Beijing and Shanghai (China), Taipee (Taiwan), Singapore and US. SGS Brightsight is a knowledge-based company. Our international team of experts stay up to date with the latest technologies and requirements to ensure the most reliable and efficient evaluation process possible for our customers. Our ambition is to grow our team to maintain our position as the world’s number one security lab, on both quality and quantity levels.
Job Description
As a Vulnerability Analyst you will perform perturbation attacks to analyse the security of hardware devices such as Smart Cards or modern System-on-Chip ICs. Using attack methods like laser attacks, electromagnetic fault injection, body biasing injection, or voltage glitching you will disturb and bypass security functions of a device.
You Will:
- Assess the security of integrated circuits which are deployed in an unprotected environments;
- Analyse devices and products under optimal attack conditions;
- Develop and execute fault attack campaigns;
- Qualitative and quantitative results analysis;
- Develop and improve our fault injection tool set further.
Qualifications
- Degree, Masters or PhD in Information Technology, Informatics, Electrical and Electronic Engineering, Computer Science, Mathematics, Physics or a related subject;
- Possess an understanding of perturbation attacks such as power glitching, clock manipulation, EM injection, or laser fault injection;
- Basic understanding of Cryptography;
- Test automation experience;
- Hardware or Software security background;
- Good programming skills and familiarity with languages such as Python (mostly), C, C++, Assembly etc;
- Knowledge on integrated circuit design and manufacturing is beneficial.
Additional Information
WHY WORK FOR SGS BRIGHTSIGHT?
SGS Brightsight is the number one independent security evaluation lab in the world. We have over 30 years of experience in evaluating security products against a variety of requirements.
At SGS Brightsight you will:
- Be part of a multicultural team with highly motivated colleagues from all over the world
- Work for the recognized global leader in security evaluations
- Work with all major developers on their latest innovations
- Enjoy an informal and intellectually challenging work environment
This position will be based at our lab in Graz.
Payment is based on the collective agreement IT (KV IT), the minimal guaranteed annual salary starts at 43.613€. Depending on qualification and experience a higher grading or respective overpayment is possible.
SGS DTS is member of https://www.cint.at supporting with re-location and first steps in Austria for expats.
Apply
To help us track our recruitment effort, please indicate in your cover letter where (vacanciesineu.com) you saw this job posting.