Senior Security Consultant – Hardware and Embedded Security

Senior Security Consultant – Hardware and Embedded Security Location: Waterloo, Canada Thanks for checking out our latest opportunity. We’re thrilled that YOU are considering joining our team! We’re NCC Group – a global leader in security consulting with a relentless passion for cutting-edge research and technical excellence. Security isn’t just what we do; it’s who we are. Our culture thrives on collaboration, continuous learning, and a deep commitment to delivering outstanding results. At NCC Group , we don’t just identify vulnerabilities – we’re shaping the future of security, and we need someone like you to help us do it. We’re on the lookout for an experienced Security Engineer or Researcher to join our Hardware and Embedded Security consulting practice. What You’ll Do: As a Senior Security Consultant, you’ll take the lead on technical aspects of complex projects, driving security assessments and offering expert guidance to clients. Your main duties will include: Conducting thorough penetration testing, code reviews, and security analysis. Leading research and reverse engineering on emerging technologies and potential threats. Guiding clients in secure design practices, including threat modeling and attack surface analysis. Mentoring junior team members while contributing to internal tools and research initiatives. Managing a variety of projects, often working remotely but with occasional travel to client sites as necessary. About You: To succeed in this role, you should have: Strong experience in software or hardware security. In-depth technical knowledge of driver code auditing, bootloaders, secure boot, and embedded system architectures. Proficiency in C/C++ for security-focused code reviews. A solid understanding of firmware reverse engineering and security analysis. Excellent communication skills, with the ability to clearly explain complex vulnerabilities to clients. A Bachelor’s degree in Computer Science, Engineering, or a related field (preferred). Additionally, it would be a bonus if you have experience in: Cryptography. Black-box reverse engineering. Familiarity with UEFI platform firmware, ARM/x86 architectures, and secure boot. Experience with SDR, wireless protocols (Bluetooth, Wi-Fi, ZigBee), or storage controllers like NVMe, SATA, and eMMC. Why Join Us? Mostly remote with minimal travel required. We offer a strong pay package. We support your research goals and give you the time and resources to contribute to the security community. Access to internal resources to expand your skills. A casual, inclusive environment with social events and team outings. Is this your next challenge? If you’re a seasoned Security Consultant with a passion for innovation and a desire to make a real impact on the future of security, we’d love to hear from you! About Your Application: We carefully review every application and will reach out if your skills and experience match what we’re looking for. If you don’t hear from us within 10 days, please don’t be discouraged – we may retain your CV for future roles and encourage you to keep an eye on our job opportunities for other suitable positions. If you’d prefer we don’t retain your details, just email us at [email protected]. All personal data is handled in accordance with the NCC Group Privacy Policy (candidate-privacy-notice-261023.pdf (nccgroupplc.com)). We are committed to creating a diverse and flexible workplace. If you require any reasonable adjustments during the application process, feel free to let us know at any time. Please be aware that this role requires mandatory pre-employment background checks due to the nature of our work. You must be willing to undergo the vetting process, which includes BS7858 screening as a mandatory requirement. Originally posted on Himalayas Apply tot his job