Security Researcher

Herzliya, Tel Aviv District, Israel
Hardware

Summary

Posted:
Role Number:200374560
Help Apple secure the world’s most advanced consumer devices which people trust to store their personal and professional data. We believe that the best defense is a good offense, and that that means finding vulnerabilities before the community does. We're looking for talented and inspired individuals to join our team and attack Apple's products, with the goal of better safeguarding our users. The job involves performing security reviews of low level software and its interface with the SoC HW.

Key Qualifications

  • Ability to find software security vulnerabilities through static and dynamic analysis
  • Programming background in C, C++, Python
  • Proficiency in real time operating system internals
  • Good understanding of SoC architecture and hardware security primitives
  • Familiarity with assembly and ARM instruction set
  • Good understanding of the principles and use of cryptographic primitives and protocols
  • An understanding of past, current, and emerging security exploit types
  • Reverse engineering capabilities + working knowledge in IDA
  • Familiarity with secure bootloaders
  • Team player with good interpersonal skills

Description

Customers’ security, privacy, and safety are very important to Apple. Your job will be to analyze our products and attempt to break them in ways that could undermine these goals, including when the attacker is in possession of the Apple device. In order to do that, you will be required to: - Examine embedded systems and find security vulnerabilities in Apple or 3rd party firmware and bootloaders. Develop tools to automate or focus the effort of performing such security reviews - Examine new Apple silicon security features and demonstrate if/how they can be defeated - Propose new ideas for security hardening and mitigations - Stay abreast of modern hacking techniques against Apple products, including those where the attacker is in close proximity or possession of the device

Education & Experience

B.Sc / M.Sc in Computer Science/Engineering, and/or proven track record as a security researcher/analyst

Additional Requirements