Offensive Security Engineer, Device Wireless Connectivity

Minimum qualifications:

• Bachelor's degree in a related technical field or equivalent practical experience.
  
• Experience developing system software or writing exploit/proof-of-concept code.
  
• Experience as security engineer or researcher identifying vulnerabilities in wireless protocols or implementations.
  
• Security experience in two of the following areas: Cellular modem/baseband, protocols, integrated circuits and eSIM Wifi, Bluetooth, Thread, USB, or NFC; including protocols and implementations.
  

Preferred qualifications:

• Master's degree or PhD in Computer Science with a specialty in security.
  
• Experience writing exploits for wireless communication vulnerabilities on secured devices (e.g., Android, Linux based platforms, etc.).
  
• Experience presenting security research at conferences or workshops, participating in Capture the Flag (CTF) events, and Vulnerability Rewards Programs (VRP).
  
• Ability to assess the effect of security hardening efforts.
  
• Ability to quickly ramp up on new code bases (C, C++, Rust) and evaluate the architecture, attack surface, and weaknesses.
  
• Solid applied cryptography fundamentals.
  

About the job

We are part of the Security and Privacy Engineering organization in Google Devices and Services and our goal is to embed and support robust security and privacy practices throughout the product life cycle, ensuring the trustworthiness of the devices, apps, software services, and platforms that our product area develops and maintains. This includes popular brands such as Pixel, Nest, Fitbit, and Chromecast.

Our product security team is composed of defensive and offensive security engineers that prevent, detect, and mitigate vulnerabilities across a variety of product lines and services. We collaborate with product development teams on system design, hardening, code analysis, security testing, and other security assurance functions with the goal of minimizing the risk of abuse and increasing the cost of vulnerability exploitation. In addition to our work with other Google groups, we are connected to the security community through our vulnerability rewards programs and conferences.

As an Offensive Security Engineer, you will join our offensive security program for Made-by-Google devices that are powered by Android, GenAI features, and other technologies. The program’s scope is broad and covers system software, SoC, wireless communications, Trusted Execution Environments (TEE), and other subsystems. You will focus on device wireless connectivity security and will contribute to individual as well as collaborative projects, including security research and red-team exercises, with the goal of discovering and proving product deficiencies at the implementation and design levels. You'll also evaluate the security of fundamental building blocks in hardware, firmware, and software (first-party and third-party) that power existing and new connected devices like phones, tablets, devices, cameras, content streamers, and other smart home products.

Responsibilities

• Define and drive offensive security projects on connected devices including their wireless components, features, and associated subsystems.
  
• Conduct security research in areas of high security risk and contribute to the planning and execution of red-team engagements.
  
• Find and experimentally demonstrate the exploitability of attack vectors and vulnerabilities on the device wireless communication stack.
  
• Propose solutions to security issues and contribute to the design of mechanisms to mitigate or eliminate the risks.
  
• Identify and drive projects to automate the team’s offensive security work.