Job Description
Reporting to the Manager of the Security Lifecycle Services team, you are an experienced software developer with excellent analysis skills, and a strong background in software security. In collaboration with SLS security experts based in Ottawa and with the Application Security Architect, you will be analyzing the security of software applications produced by Irdeto against defined security requirements and the general threat landscape of the applicable marketplaces.
The SLS team is responsible for delivering the security services associated with Irdeto Cloakware products, which combine Digital Asset Protection with Security Lifecycle Management. This position is the primary eyes and ears of this team in Beijing, working with peers in Engineering and performing internal ethical hacking on relevant applications.
Required Skills
• Hands-on binary reverse engineering of software, preferably on mobile platforms such as Android and iOS..
• Practical knowledge of how hacking and piracy work in the Asian and Chinese markets, the implications of the Great Firewall etc.
• Good research skills to find and understand emerging or deployed hacking or piracy threats to our customer’s products and services.
• Ability to analyze software attacks, understand and report how they may have circumvented security features.
• Ability to test an Irdeto software implementation against documented security requirements and report in a timely, honest and constructive way on the strengths and weaknesses found.
• Assertiveness as required to constructively raise security concerns with engineering development teams, ensure they are addressed, and escalate if not.
• Internet searching experience, preferably automated, relating to security and hacking activity.
• Knowledge of how to deal with and analyze potentially suspect or malicious software e.g. Red LANs, virtual machines, emulators etc.
• Able to propose software countermeasures against attacks in the field to be developed in collaboration with Irdeto Engineering, as well as pro-active security updates in advance of a field security issue.
• Work in collaboration with Irdeto engineering groups, conducting security assessments, security audits (black box attacks) of Irdeto products and security assurance programs, so that they can deploy their products with confidence and with strong resistance to attacks.
• Familiarity with a variety of software platforms such as Windows, Linux, iOS, and Android.
Required Experience
• A university degree in engineering, computer science or equivalent technical degree with at least 5 years of software development experience in C and C++. Java and scripting experience is also relevant.
• Hands-on reverse engineering experience on consumer platforms (whether preformed as part of official job functions or not).
• Proficient in the latest forensic, response and reverse engineering skills and exploit methodologies used by hackers.
• Very strong analytical skills. Familiarity with static and dynamic software analysis tools such as IDAPro, OllyDbg, WinDbg, Procmon, gdb, AndBug.
• Ability to work in a collaborative manner with many stakeholders (internal and external) including technical staff, management, and product development and support teams.
• Continuously learning and actively seeking out new learning opportunities in hacker exploit techniques as a master in intrusion prevention/detection.
• A desire and enthusiasm to work in a highly dynamic environment, dealing with unpredictable challenges and coming up with creative solutions under aggressive time lines.
• Specific experience in the Digital Rights Management or Conditional Access technology is a definite asset.
联系人:
Nancy
联系电话:
13811923880
电子邮箱:
nancy8090@163.com
QQ/MSN:
公司网址:
http://
公司介绍:
Irdeto(荷兰公司),爱迪德公司是全球众多领先的内容所有者、内容分发商、设备制造商和软件公司最值得信赖的合作伙伴,包括Adobe, Skylink, Al Jazeera, Multichoice Africa 和Televisión Cable Digital。通过其内容安全保护、条件接收、运营支撑系统以及内容和数字版权管理产品系列,爱迪德公司提供具有高度灵活性的、可以满足多种应用需求的技术平台, 以确保对数字资产和内容实现自如的访问。爱迪德公司在全球设有两个总部,分别位于中国的北京和荷兰的阿姆斯特丹。爱迪德公司目前在全球25个国家和地区设 有办公室,员工人数达2000余人。北京是东半球总部,目前有300-400人。爱迪德公司是跨国传媒集团Naspers(JSE:NPN)的子公司. 7d9K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6h3W2J5k6r3g2@1L8#2)9J5k6h3y4G2L8b7`.`.
Job Description
Reporting to the Manager of the Security Lifecycle Services team, you are an experienced software developer with excellent analysis skills, and a strong background in software security. In collaboration with SLS security experts based in Ottawa and with the Application Security Architect, you will be analyzing the security of software applications produced by Irdeto against defined security requirements and the general threat landscape of the applicable marketplaces.
The SLS team is responsible for delivering the security services associated with Irdeto Cloakware products, which combine Digital Asset Protection with Security Lifecycle Management. This position is the primary eyes and ears of this team in Beijing, working with peers in Engineering and performing internal ethical hacking on relevant applications.
Required Skills
• Hands-on binary reverse engineering of software, preferably on mobile platforms such as Android and iOS..
• Practical knowledge of how hacking and piracy work in the Asian and Chinese markets, the implications of the Great Firewall etc.
• Good research skills to find and understand emerging or deployed hacking or piracy threats to our customer’s products and services.
• Ability to analyze software attacks, understand and report how they may have circumvented security features.
• Ability to test an Irdeto software implementation against documented security requirements and report in a timely, honest and constructive way on the strengths and weaknesses found.
• Assertiveness as required to constructively raise security concerns with engineering development teams, ensure they are addressed, and escalate if not.
• Internet searching experience, preferably automated, relating to security and hacking activity.
• Knowledge of how to deal with and analyze potentially suspect or malicious software e.g. Red LANs, virtual machines, emulators etc.
• Able to propose software countermeasures against attacks in the field to be developed in collaboration with Irdeto Engineering, as well as pro-active security updates in advance of a field security issue.
• Work in collaboration with Irdeto engineering groups, conducting security assessments, security audits (black box attacks) of Irdeto products and security assurance programs, so that they can deploy their products with confidence and with strong resistance to attacks.
• Familiarity with a variety of software platforms such as Windows, Linux, iOS, and Android.
Required Experience
• A university degree in engineering, computer science or equivalent technical degree with at least 5 years of software development experience in C and C++. Java and scripting experience is also relevant.
• Hands-on reverse engineering experience on consumer platforms (whether preformed as part of official job functions or not).
• Proficient in the latest forensic, response and reverse engineering skills and exploit methodologies used by hackers.
• Very strong analytical skills. Familiarity with static and dynamic software analysis tools such as IDAPro, OllyDbg, WinDbg, Procmon, gdb, AndBug.
• Ability to work in a collaborative manner with many stakeholders (internal and external) including technical staff, management, and product development and support teams.
• Continuously learning and actively seeking out new learning opportunities in hacker exploit techniques as a master in intrusion prevention/detection.
• A desire and enthusiasm to work in a highly dynamic environment, dealing with unpredictable challenges and coming up with creative solutions under aggressive time lines.
• Specific experience in the Digital Rights Management or Conditional Access technology is a definite asset.
