Job Description

About The Job / Key Responsibilities

CENSUS bespoke cybersecurity services are built upon a talented pool of Security Engineers, whose role extends beyond mere adherence to industry best practices. Our Technical Project Managers play a pivotal role in formulating and executing service delivery strategies that align with the rigorous quality standards set by CENSUS. Drawing from their robust technical background and leveraging their project & stakeholder management skills, TPMs serve as the primary facilitators empowering our clients to effectively maximize the potential of our security and advisory teams.

Skills

We are looking for talented & ambitious professionals to grow our Product Security Professional Services team and join our ongoing mission to deliver in-depth and top-tier cybersecurity services to our valued clients. As part of this role, you will use your technical background - in the Embedded Systems Security domain along with your Project Management skills to enable a successful service delivery to our clients. You will work side-by-side with our clients development and security teams & partners, under engagements / projects that involve:

• Working with our clients to understand their requirements and scope, size, plan the corresponding technical activities to efficiently meet those (consulting, assessments, audits, evaluations, security architecture development, etc.).
• Receiving high-level task & product descriptions and decomposing them to smaller & well-defined technical activities, which are then assigned to the corresponding security engineering & consulting teams.
• Leading projects technical team within the scope of the engagement.
• Documenting and presenting product security risks in both technical and business-oriented language.
• Conducting technical QA and presenting to both technical and business audiences, the technical team deliverables (findings, technical reports, observations, improvement recommendations, operational methodologies, etc.)
• Building and developing relationships with cross-client teams and partners.
• Owning & driving the continuous improvement of the technical quality of the project team deliverables.
• Ensuring client satisfaction and business growth by communicating lessons learned and key success factors to the business development team.
  
  

Minimum Qualifications

• MSc or BSc in Electrical Engineering, Computer Science, Computer Engineering, Electronics Engineering, or equivalent practical experience.
• 4+ years of experience in embedded, general- or special-purpose computer system-level software or firmware security. Experience can be an engineering / development position (e.g., consumer or enterprise), an assessment / consultancy role, an equivalent role in other engineering organizations, or a combination of them.
• 2+ years of experience in technical project management in a role related to product or information security.
  
  

Key Skills & Preferred Qualifications

• Experience with Embedded Systems, Linux, or Real Time Operating systems security concepts.
• Experience with reviewing system security architecture & engaged technologies.
• Experience with ARM architectures & platforms.
• Experience with C, C++, Rust, or Assembly (ARM) programming languages in the context of system software (bootloaders, drivers, kernel, system services, etc.).
• Experience with secure boot, firmware & software integrity, OTA updates, and hardware-backed device attestation technologies.
• Experience with cryptographic primitives and cryptographic best practices in the context of system security (inline crypto engines, storage encryption, attestation, HW key rooting, derivation, wrapping/unwrapping, etc.).
• Familiarity with identifying and reporting security vulnerabilities on system software (memory corruption, side-channel attacks, business logic, etc.).
• Familiarity with product security assessments and S-SDLC processes.
• Experience with managing technical teams.
• Experience with translating complex technical concepts into relevant messages suitable for various audiences (engineering and different tiers of management).
• Experience with stakeholder management for security engineering deliverables.
• Experience working with international teams located in other regions and time zones worldwide.
• Excellent leadership, ownership, problem solving skills, and willingness to learn/grow.
• Proficient in English and excellent communication skills.