Quarkslab is building new tools to analyze what is going on our systems, from an ARM dynamic binary instrumentation to symbolic execution framework like Triton (http://triton.quarkslab.com) and several other advanced software security tools. System audits and vulnerability research must be taken to a new stage, as code bases are growing faster and faster. New tools need to be designed to help the security researchers in their daily work.
Founded 5 years ago, Quarkslab is working internationally since its origins. Whereas we are based in Paris (France), we are now opening offices in Japan and Argentina, where several open positions are available.
Send a resume to the email address provided in the job description.
Explain in your message the relevant projects (links to published code is better!) you have been working on to demonstrate you fit the position and why you are applying. Make it personal, we are interested in people motivated to be involved in taking Quarkslab to a new stage.
We will reply with a small challenge to give us the opportunity to discuss both what we are building, and how you can bring your own experience in that.
The position is based in Tokyo to work at a subsidiary dedicated to automotive security. The main job will be to assess security of car components (ECUs, like BCM, gateways, and other embedded systems) and some Industrial Control Systems (ICS).
You will have to assess the security of components which were never designed with security nor communication capabilities in mind, in an environment where IT was not even considered.
In this job, you will have to audit applications, system components, fuzz, reverse, find clever tricks for both our customers and our own R&D in order to deliver good results, like building an universal remote to open cars or taking over the engine to manipulate its parameters.
The Qb.jp team will also include automotive engineers knowing about car systems and electronics. So, knowledge in this topic is not mandatory.
Quarkslab is developing products like IRMA (a scheduler for file analysis) or Ivy (a massive network reconnaissance software) where the UX is very important as it must handle a lot of data and be as simple as possible at the same time. UI design and development is a critical challenge in such kinds of products, same as the scheduling of the jobs providing the data.
Qb.ar is based in Buenos Aires with reverse engineers mostly. Day-to-day development work is made with an international team mostly based in France for now, but for products which are sold worldwide.