Information Security Intern assisting with components of Benjamin Moore's information security program. Responsibilities include documentation, compliance monitoring, and forensic analysis.
About the role
- Product Security Engineer ensuring the cybersecurity posture of connected vehicle platforms by leading wireless penetration testing. Assessing vehicle systems to identify and mitigate security weaknesses.
Responsibilities
- Perform penetration testing across Bluetooth (Classic/BLE), Wi-Fi, NFC, UWB, Cellular (LTE/5G), GNSS, and other RF-based vehicle subsystems
- Setting up a test environment to conduct analysis of the communication between the UE and eNodeB
- Performing security assessments on wireless devices to identify potential vulnerabilities
- Identifying various methods to circumvent security controls such as authentication mechanism on various wireless devices such as Bluetooth/Wi-Fi, NFC, etc.
- Capturing wireless communications between a smart phone, and Device Under Test (DUT), and identify ways to impersonate the device
- Attempting to extract and/or capture secret keys exchanged during the authentication between the two wireless devices
- Identifying where secret keys are stored persistently upon a successful authentication between two devices
- Identifying the type of authentication and security mode BLE peripheral/central and WPA supports
- Performing analysis on the secure link during the BLE pairing process and identify potential misconfigurations or security flaws
- Identifying and exploiting the vulnerabilities in NFC systems
- Capturing, decoding and/or performing replay/relay attacks
- Generating test reports, and recommending the appropriate course of action, and supporting the mitigation and re-validation efforts
- Participating in research activities to investigate vulnerabilities, emerging cyber threats, and new technologies
Requirements
- Bachelor’s degree in Cybersecurity, Computer Science, or related field
- Strong technical expertise in various wireless protocols such as Cellular, Wi-Fi, Bluetooth, NFC, and UWB
- Ability to perform various types of security tests such as penetration testing, fuzz testing, and evaluating the security requirements for wireless technologies
- Hands-on experience regarding security testing Cellular network, Wi-Fi, BT/BLE, and NFC
- Familiarity and ability to operate Cellular simulators tools such as Keysight, Anritsu, and Wi-Fi, BT/BLE analyzers and testing suites
- Experience with scripting and automation tools for collecting and analyzing data
- Advance knowledge of LTE, WPA2/3, NFC, BT/BLE security features
- Proficient with SDRs platforms and experienced in tool development, including building RF-based penetration testing tools
- Qualifications
- Deep technical knowledge of wireless and RF-based technologies including Bluetooth (Classic/BLE), Wi‑Fi (WPA2/WPA3), Cellular (LTE/5G), NFC, UWB, GNSS, and related protocols, with the ability to assess and exploit security weaknesses.
- Ability to plan and execute advanced penetration testing activities, including authentication bypass, key extraction, replay/relay attacks, and exploitation of protocol and implementation flaws.
- Strong analytical skills to evaluate complex wireless communications, pairing processes, and secure links to identify misconfigurations, design weaknesses, and security vulnerabilities.
- Experience designing, building, and operating controlled test environments to simulate real-world attack scenarios, including UE–eNodeB communication analysis and multi-device wireless interactions.
- Proactive approach to researching emerging wireless threats, vulnerabilities, tools, and technologies, and applying findings to continuously improve testing methodologies and security posture.
- Ability to produce clear, actionable penetration testing reports that document findings, assess risk, recommend mitigations, and support remediation and re-validation efforts.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Specialist in Information Security at Lojas Renner responsible for monitoring and addressing security incidents. Collaborating with various teams on data protection strategies and leadership preparation.
Cybersecurity Specialist at Caixa Vida e Previdência ensuring safety in various technology solutions. Collaborating with teams to implement security measures and respond to incidents.
GRC Analyst enhancing governance, risk, and compliance practices within Sword, focusing on cybersecurity standards and configuration management.
Técnico de Segurança do Trabalho at Cia do Treinamento responsible for training clients on safety regulations and conducting safety assessments. Seeking professionals passionate about safety and compliance across Brazil.
Ingénieur en sécurité physique participant à des projets d’envergure au sein de Stantec. Analysant besoins, concevant systèmes de sécurité et préparant documentation technique.
System Security Engineer strengthening cybersecurity posture across on - premise and hybrid environments. Focused on Windows infrastructure security, identity management, and compliance.
Security Testing Lead overseeing application security testing activities at Computer World Services. Ensuring continuous identification and remediation of application security risks through dynamic testing methods.
IS Security Administrator managing all aspects of cyber security and data protection at Avita Health System. Responsible for risk assessments and IT security strategies across various platforms.
Senior Security Engineer strengthening security at fintech startup Flanks, focusing on security initiatives and practices across applications and infrastructure.