See all the jobs at Eclypsium here:
| Solutions | Contract | Fully remote
,Eclypsium is a leader in infrastructure supply chain security, bringing assessment of risk and integrity down to the lowest levels of every device. We're based on a long history of security research, and we are looking to expand our technical team to help address this enormous area for our customers.
The Role:
We are seeking an experienced professional who enjoys security research into deep firmware and hardware issues while also inspiring customers and coworkers with written and verbal results, automated tools, and customized implementations.
Key Responsibilities:
Assess supply chain security for customers, including the following:
-
Proactively engage directly with clients to understand their environments and help manage supply chain risks
-
Deploy and maintain our solutions, deliver firmware security training, and perform security research by working with customers (face-to-face or remotely) to scan systems, present key risks, and identify next steps for improvement
-
Research security of devices and internal components and develop tools that discover vulnerabilities across multiple projects in a repeatable and automated manner
Enhance the Eclypsium product and service capabilities, including the following:
-
Prototype integrations, extensions, and analytic techniques that reveal more useful insights into the digital supply chain.
-
Serve as a key feedback channel for customer reception of new features or capabilities through direct interactions with customers.
Requirements:
-
Strong troubleshooting skills in Windows, Linux, and MacOS
-
Familiarity with x86 and ARM firmware and hardware security
-
Experience with firmware standards/frameworks such as UEFI, Coreboot, Linux, etc.
-
Familiarity with network device management and configuration
-
Experience working with specific industry verticals (finance, defense, civilian government, or technology) and their specific requirements.
-
Excellent written and verbal English communication skills.
Ideal Candidate:
The perfect candidate has a background in assessing firmware and hardware vulnerabilities, building solutions and processes involving hardware architecture, scripting, binary analysis, and systems implementation. They are interested in the firmware security space, passionate about security, proactive, self-motivated, and excited to inspire customers and coworkers with your latest automation or customized implementations.
-
5+ years of experience in software vulnerability research and tool development.
-
Singapore citizens preferred
We offer a competitive salary and startup equity, as well as opportunities for growth and professional development. If you're passionate about device security and interested in joining our team, please submit your application.
Eclypsium is a supply chain security platform that builds trust in every device by identifying, verifying and fortifying software, firmware and hardware throughout enterprise infrastructure. Eclypsium’s SaaS platform does this by integrating the bill of materials from suppliers and continuously monitoring to independently assess risk of each critical asset from chip to cloud, throughout the life cycle, and across enterprise ecosystems. Protecting Fortune 100 enterprises and federal agencies, Eclypsium has been named a Gartner Cool Vendor in Security Operations and Threat Intelligence. A TAG Cyber Distinguished Vendor, one of the World’s 10 Most Innovative Security Companies by Fast Company, a CNBC Upstart 100, a CB Insights Cyber Defender, and an RSAC Innovation Sandbox finalist. For more information, visit eclypsium.com.