HARMAN’s engineers and designers are creative, purposeful and agile. As part of this team, you’ll combine your technical expertise with innovative ideas to help drive cutting-edge solutions in the car, enterprise and connected ecosystem. Every day, you will push the boundaries of creative design, and HARMAN is committed to providing you with the opportunities, innovative technologies and resources to build a successful career.

A Career at HARMAN

As a technology leader that is rapidly on the move, HARMAN is filled with people who are focused on making life better. Innovation, inclusivity and teamwork are a part of our DNA. When you add that to the challenges we take on and solve together, you’ll discover that at HARMAN you can grow, make a difference and be proud of the work you do everyday.

About the Role

New opportunity within our large Engineering organization for a Security Test Principal Engineer as part of a new opening position in Connectivity Test Center. This role will be part of a new team based in Bucharest which will work closely with the wider team. Our goal is to build out our Connectivity Test Coordinating team operating from our strategic site in Bucharest providing experienced and dynamic team members to support multiple roles across our portfolio of global projects. This is an extremely exciting time to get involved, to help develop and shape innovative technology and drive change throughout the organization.

What You Will Do

Identifying methods to manipulate Remote SIM Provisioning including but not limited to SIM Jacking attack.Setting up a test environment to conduct analysis of the communication between the UE and eNodeBPerforming security assessments on wireless devices to identify potential vulnerabilities.Identifying various methods to circumvent security controls such as authentication mechanism on various wireless devices such as Bluetooth/Wi-Fi, NFC etc.Capturing wireless communications between a smart phone, and Device Under Test (DUT), and identifying ways to impersonate the device.Attempting to extract and/or capture secret keys exchanged during the authentication between the two wireless devices.Identifying where secret keys are stored persistently upon a successful authentication between two devices.Identifying the type of authentication and security mode BLE peripheral/central and WPA supportsPerforming analysis on the secure link during the BLE pairing process and identify potential misconfigurations or security flaws.Identifying and exploiting the vulnerabilities in NFC systems such as a mobile phone used to transmit RF signal to lock/unlock doors.Capturing, decoding and/or performing replay/relay attacks against key fobs using SDR and generating test reports, and recommending the appropriate course of action, and supporting the mitigation and re-validation effortsParticipating in research activities to investigate vulnerabilities, emerging cyber threats, and new technologies.Prepare and present reports and findings to senior management and Customer, outlining security risks and proposed solutions.Stay up-to-date with the latest security threats, vulnerabilities, and best practices by being part of the Cybersecurity core teamLead root cause analysis efforts to investigate process failures, identify the underlying issues, and develop solutions to prevent future occurrences.Act as the primary point of contact for any inquiries or concerns related to the process or project.Maintain open and transparent communication with all relevant stakeholders (Arhitects, Developers, Customers, CSMC team), providing regular updates on progress, issues, and successes.

What You Need

Bachelor’s degree in computer science, information systems or equivalent experience5+ years Security Testing experience.Strong technical expertise in various wireless protocols such as GSM, Wi-Fi, Bluetooth, NFC, CAN, UDS and UWB Ability to perform various types of security tests such as penetration testing, fuzz testing, and evaluating the security requirements for wireless technologies.Hands-on experience regarding security testing Cellular network, Wi-Fi, BT/BLE, and NFCCVE and GPS Spoofing knowledgeExperience with scripting and automation tools for collecting and analyzing data.Advance knowledge of LTE, RTP/AVB, WPA2/3, NFC, BT/BLE security featuresExperience with wireless specifications for LTE, and BluetoothHigh sense of responsibility and ability to work under pressure.Strong communication and collaboration skills.Business fluent in EnglishEfficiently meeting deadlines, schedules, and target dates

What is Nice to Have

ASPICE knowledge10+ year of experience in testing embedded systemsCCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP certificationsFamiliarity and ability to operate GSM simulators tools such as Keysight, Anritsu, and Wi-Fi, BT/BLE analyzers and testing suites.Experience with static and dynamic code analysisWorking knowledge of Android and LinuxAutomotive industry experienceExperience in Agile/SCRUMHW experience with configuration different setupsKnowledge in ALM is beneficial.Expertise in working with distributed development teams.

What Makes You Eligible

Willingness to travel (0-20% of time) depending on the project needs.Availability to work both remotely and from the office if requested.

What We Offer

Work in international teams with the world’s largest automotive manufacturers.Use HARMAN Flex – chose the right working model fitting their job (WFH, Hybrid or Office)Access career development opportunities and get both on the job training on high-end automotive projects, as well as extensive technical training.Access HARMAN Web shop with large employee discounts for audio products (JBL, HARMAN Kardon, AKGAre encouraged to a healthy work/life balance with a progressive holiday plan based on total work experience, 2 sick days, 3 days off compensation for weekend legal holidays and flextime.And of course, enjoy meal tickets, a premium medical subscription, fitness discounts and other corporate perks.

HARMAN is proud to be an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.