Embedded Security Researcher

PlaxidityX is looking for a brilliant Security Researcher to join our elite team. In this role, you will combine offensive research with product innovation. You will conduct in-depth research and penetration testing on Automotive ECUs, uncovering vulnerabilities at both the hardware and software levels. Additionally, you will act as the "Red Team" for our vehicle protection systems, simulating sophisticated attacks to ensure our detection capabilities stay ahead of global threats.

What You’ll Do

• ECU & Low-Level Research: Conduct deep-dive security research into Automotive Electronic Control Units (ECUs).
• Automotive Offensive Research: Analyze automotive protocols and architectures to identify, develop, and implement end-to-end attack vectors.
• Red Teaming: Serve as the internal adversary for our vehicle protection products. You will execute attacks to validate detection efficacy and provide the offensive "ground truth" needed to improve our security logic.
• Collaborate with Data Scientists: Work closely with our Data Science teams to fine-tune AI-based detection features, helping to translate complex exploit behaviors into actionable data features.

Requirements

• Offensive Mindset: Proven experience in exposing and exploiting vulnerabilities in complex systems.
• Embedded Expertise: Hands-on research experience with embedded/low-level systems.
• Network Communication Expertise: Deep understanding of the logic and vulnerabilities within network protocols and the ability to implement functional attacks against them.
• Security Fundamentals: Strong grasp of cybersecurity principles, including cryptography.
• Programming: Strong scripting and development skills in Python (for research/tooling) and C/C++ (for exploit development).
• Execution: A "get-things-done" attitude; self-driven and thrives in fast-paced, problem-solving environments.

Advantages

• Data Science & AI: Experience working with data teams, understanding of feature engineering, or experience fine-tuning AI models based on security domain expertise.
• OS Internals: High level of expertise in Linux / QNX / Android internals (both user and kernel space).
• Product Security: Experience building or testing Intrusion Detection/Prevention Systems (IDS/IPS) or EDR/XDR platforms.
• Automotive Knowledge: Understanding of automotive-specific protocols (CAN, Automotive Ethernet, UDS, etc.) and the ability to implement functional attacks against them.