Firmware Security Engineer 32 Lakhs CTC || Srinivasa Reddy Kandi

Dear Candidate,

Key Responsibilities:

• Analyze and assess firmware security

  in

  embedded systems, IoT devices, and industrial control systems (ICS)

  .
• Perform

  reverse engineering and static/dynamic analysis

  to detect backdoors, malware implants, and unauthorized modifications in firmware.
• Identify and mitigate vulnerabilities such as

  buffer overflows, stack/heap exploitation, and privilege escalation

  in embedded environments.

• Implement secure boot mechanisms

  and firmware authentication methods to prevent unauthorized execution.
• Develop and integrate

  firmware integrity verification techniques

  , including

  code signing, cryptographic hashing, and trusted execution environments (TEE)

  .
• Conduct

  hardware penetration testing

  on IoT and embedded systems to assess potential attack vectors.
• Research and implement

  defenses against firmware rootkits, BIOS/UEFI attacks, and bootkit threats

  .

• Collaborate with hardware engineers and chip manufacturers

  to enhance hardware security features such as

  TPM (Trusted Platform Module), ARM TrustZone, and secure enclaves

  .
• Work with

  Secure OTA (Over-the-Air) Update Mechanisms

  to ensure firmware updates are encrypted and verified.
• Design and develop

  custom security tools

  for

  binary analysis, firmware extraction, and vulnerability assessment

  .
• Assess and improve

  hardware security for medical devices, automotive ECUs, smart appliances, and industrial controllers

  .

• Monitor and respond to emerging firmware security threats

  , vulnerabilities (CVE analysis), and zero-day exploits in embedded software.
• Perform

  side-channel analysis and fault injection testing

  to detect potential weaknesses in hardware cryptographic implementations.
• Ensure

  compliance with security standards

  such as

  NIST 800-193, ISO 26262 (automotive security), and IEC 62443 (industrial security)

  .
• Develop

  security best practices and secure coding guidelines

  for firmware developers.

Required Skills & Qualifications:

• Strong experience in firmware security analysis, reverse engineering, and embedded software development

  .
• Proficiency in

  C, C++, and assembly language

  for low-level embedded programming.
• Hands-on expertise with

  reverse engineering tools

  such as

  Ghidra, IDA Pro, Binwalk, Radare2, and Firmware Analysis Toolkit.

• Deep knowledge of hardware debugging tools

  like

  JTAG, UART, SPI, I2C sniffers, and logic analyzers

  .
• Experience in

  UEFI/BIOS security, secure boot implementations, and trusted execution environments (TEE)

  .
• Strong understanding of

  binary exploitation techniques, stack/heap manipulation, and firmware patching

  .
• Familiarity with

  cryptographic security mechanisms

  such as

  AES, RSA, ECC, TPM, HSMs (Hardware Security Modules)

  .
• Experience securing

  IoT protocols

  , including

  MQTT, CoAP, Zigbee, LoRaWAN, and BLE security

  .
• Strong understanding of

  ARM Cortex-M, RISC-V, and x86 firmware architectures

  .
• Hands-on experience with

  penetration testing on embedded systems and hardware hacking

  .
• Ability to

  analyze firmware binaries for vulnerabilities and create proof-of-concept exploits

  .
• Understanding of

  automotive security (CAN bus, AUTOSAR, ISO 21434)

  and

  industrial IoT security

  .

Soft Skills:

• Strong problem-solving and analytical skills.
• Excellent communication skills to work with cross-functional teams.
• Ability to work independently and as part of a team.
• Detail-oriented with a focus on delivering high-quality solutions

Note: If you are interested, please share your updated resume and suggest the best number & time to connect with you. If your resume is shortlisted, one of the HR from my team will contact you as soon as possible.

Srinivasa Reddy Kandi

Delivery Manager

Integra Technologies