Principal Hardware Security Engineer (TS/SCI #25-057)
Apply NowCompany: Strategic Analysis, Inc
Location: Arlington, VA 22204
Description:
Responsibilities:
Provide expert technical guidance in the research, design, and implementation of secure hardware platforms, with a focus on mitigating vulnerabilities and ensuring the development of robust, resilient, and trustworthy hardware solutions
Guide comprehensive security assessments of hardware designs, including SoC designs, reviewing schematics, informing penetration testing on prototypes, and identifying potential backdoors or vulnerabilities using reverse engineering techniques
Inform the design and implementation of cutting-edge solutions to enhance hardware platform security, including secure boot processes for FPGA-based systems, hardware-based encryption and authentication mechanisms, and countermeasures against side-channel attacks and fault injection techniques
Contribute to the development of technical requirements and specifications for secure hardware design, ensuring alignment with industry best practices, government regulations, and certification standards
Collaborate with researchers, engineers, and stakeholders to transition research prototypes into practical, deployable solutions
Proactively identify and mitigate emerging threats, vulnerabilities, and attack vectors targeting hardware platforms
Requirements:
Demonstrated expertise in a combination of hardware design, cybersecurity, and reverse engineering
Demonstrated experience in applying hardware security principles, such as attack methodologies, network encryption protocols (e.g., AES, RSA, IPsec, SSL/TLS), and hardware description languages (HDLs) such as VHDL or Verilog
Experience with hardware security analysis techniques, such as side-channel analysis (SCA) and bitstream manipulation
Experience with computer-based systems development, such as JTAG debugging, fault injection frameworks, and reverse engineering software like IDA Pro or Ghidra
Proven ability to think critically, operate independently, and communicate effectively with both technical and non-technical stakeholders
Preferred Qualifications:
Extensive experience supporting DoD research and development programs
Knowledge of embedded security architectures and trusted execution environments
Experience developing high Technology Readiness Level (TRL) hardware platforms
Familiarity with secure hardware design principles including anti-tamper techniques
Industry-recognized cybersecurity certification (e.g., Security+, CISSP, CEH, CASP+) is desired
Education:
Bachelor's degree in cybersecurity, computer engineering, electrical engineering, electronics engineering, or mathematics with a concentration in computer science; or equivalent experience
Clearance:
Active TS/SCI clearance SA is an equal opportunity/Affirmative Action Plan employer that is committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws. This applies to all employment practices within our organization, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship makes hiring decisions based solely on qualifications, merit, and business needs at the time.
Provide expert technical guidance in the research, design, and implementation of secure hardware platforms, with a focus on mitigating vulnerabilities and ensuring the development of robust, resilient, and trustworthy hardware solutions
Guide comprehensive security assessments of hardware designs, including SoC designs, reviewing schematics, informing penetration testing on prototypes, and identifying potential backdoors or vulnerabilities using reverse engineering techniques
Inform the design and implementation of cutting-edge solutions to enhance hardware platform security, including secure boot processes for FPGA-based systems, hardware-based encryption and authentication mechanisms, and countermeasures against side-channel attacks and fault injection techniques
Contribute to the development of technical requirements and specifications for secure hardware design, ensuring alignment with industry best practices, government regulations, and certification standards
Collaborate with researchers, engineers, and stakeholders to transition research prototypes into practical, deployable solutions
Proactively identify and mitigate emerging threats, vulnerabilities, and attack vectors targeting hardware platforms
Requirements:
Demonstrated expertise in a combination of hardware design, cybersecurity, and reverse engineering
Demonstrated experience in applying hardware security principles, such as attack methodologies, network encryption protocols (e.g., AES, RSA, IPsec, SSL/TLS), and hardware description languages (HDLs) such as VHDL or Verilog
Experience with hardware security analysis techniques, such as side-channel analysis (SCA) and bitstream manipulation
Experience with computer-based systems development, such as JTAG debugging, fault injection frameworks, and reverse engineering software like IDA Pro or Ghidra
Proven ability to think critically, operate independently, and communicate effectively with both technical and non-technical stakeholders
Preferred Qualifications:
Extensive experience supporting DoD research and development programs
Knowledge of embedded security architectures and trusted execution environments
Experience developing high Technology Readiness Level (TRL) hardware platforms
Familiarity with secure hardware design principles including anti-tamper techniques
Industry-recognized cybersecurity certification (e.g., Security+, CISSP, CEH, CASP+) is desired
Education:
Bachelor's degree in cybersecurity, computer engineering, electrical engineering, electronics engineering, or mathematics with a concentration in computer science; or equivalent experience
Clearance:
Active TS/SCI clearance SA is an equal opportunity/Affirmative Action Plan employer that is committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws. This applies to all employment practices within our organization, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship makes hiring decisions based solely on qualifications, merit, and business needs at the time.