Cybersecurity Pentester
Description
Uppdrag 51677 Cybersecurity Pentester
Key Responsibilities:
Perform penetration testing on infotainment ECUs, head units, connectivity modules, and other vehicle embedded systems.
Identify, exploit, and document vulnerabilities across hardware, software, network, and wireless interfaces.
Conduct threat modeling, attack surface analysis, and security reviews for infotainment features.
Analyze firmware, logs, system traces, and network traffic to uncover security weaknesses.
Perform wireless protocol testing (Bluetooth, Wi-Fi, NFC, Hotspot).
Conduct assessments based on relevant security standards (OWASP, PTES, ISO/SAE 21434, UNECE R155).
Develop custom scripts, tools, and test methods to support penetration testing activities.
Collaborate with cross-functional teams to provide recommendations and support remediation planning.
Prepare clear and detailed vulnerability reports and present findings to stakeholders.
Required Skills & Qualifications
Automotive & Infotainment Security
Strong understanding of automotive infotainment architecture and connected car systems.
Practical experience testing Head Units, Telematics Units, Connectivity ECUs, or other embedded devices.
Knowledge of CAN, LIN, Automotive Ethernet, SOME/IP, UDS diagnostics.
Experience working with hardware test benches, rigs, and development units.
Penetration Testing Expertise
Hands-on experience with embedded/IoT or automotive penetration testing.
Familiarity with vehicle attack surfaces and exploitation techniques.
Strong understanding of cybersecurity frameworks: OWASP, PTES, NIST, etc.
Exposure to ISO/SAE 21434 and UNECE R155 (preferred).
Technical Tools & Methods
- Proficiency with tools such as:
Nmap, Wireshark, Burp Suite, Metasploit, Kali Linux tools, Nessus
- Experience with reverse engineering and firmware analysis:
Ghidra, IDA Pro, QEMU, Binwalk, JTAG/SWD
- Knowledge of Android/Linux security for infotainment platforms.
Programm[i]ng & Scripting
- Strong scripting in Python, Bash, PowerShell.