Security Researcher

About Saiflow

Saiflow is a cutting-edge cybersecurity company dedicated to safeguarding Energy OT/IoT distributed Networks. Our Security Platform is a tailor-made solution that provides comprehensive protection for energy and IoT sites. 

The Research team continuously analyses and performs hands-on research activities to map new attack vectors in this field involving low-level exploitation skills for proof-of-concept, broad knowledge of exploitation techniques, high motivation to innovate, and abilities to be a pioneer in the field.

Role Overview

We are seeking a talented and experienced Security Researcher to join our team.

In this role, you will take part in discovering new vulnerabilities to improve the product capabilities, present the findings at conferences, and publish blogs about it.

Your expertise will contribute to our platform and provide insights to the company’s stakeholders.

Responsibilities

• Reverse engineering & analyzing firmware of embedded devices to find new vulnerabilities and attack vectors.
• Develop new security detections as part of research work and provide new capabilities to the platform while collaborating with the R&D department.
• Develop and use tools to assist the research processes as part of the exploration of new protocol behavior, physical tools for embedded devices, reverse engineering, and other requirements that might be raised as part of the work.
• Conduct security research work based on public whitepapers and blogs. Also, if necessary, research new fields without prior knowledge.
• Implement POC exploits for new or known vulnerabilities on embedded and high-level backend applications when required.
• Write blogs and present at public conferences showcasing the research work conducted in the company and providing insights to the public.
• Follow industry standards, vulnerability updates, and new security insights published in the Distributed Energy and EV chargers infrastructure community.

Qualifications

• Experience in reverse engineering embedded firmware, real-time, or Linux operating systems using IDA or Ghidra.
• Hands-on experience in using and implementing exploits to high and low-level programming languages.
• Development experience with software design patterns and writing code in technologies such as Python/Java/C++.
• Self-learning skills on new subjects and a problem-solving approach are a must.
• Good level of spoken and written English.
• Advantage: Bachelor's Degree in Computer Science, or a related field.

Join our security research team to contribute and be part of groundbreaking solutions that safeguard energy networks worldwide.