Job Description
Senior Security Consultant – Hardware and Embedded Security
Department: Cyber Services and Capabilities
Employment Type: Full Time
Location: CAN Waterloo
Thank you for checking put our new role. We’re excited that YOU are interested in joining us!
We’re NCC Group, and we eat, drink, and breathe security. We're a global leader in security consulting with a passion for cutting-edge research and technical excellence. Our culture is built on collaboration, continuous learning, and a commitment to delivering high-quality results. At NCC Group, we don’t just want to find vulnerabilities, we want to build the future of security – and this is where you come in!
We’re looking for an experienced Security Engineer or Researcher to join our Hardware and Embedded Security consulting practice.
Key Accountabilities
What you’ll do:
As a Senior Security Consultant, you’ll be the technical lead on complex projects, driving security assessments and providing expert advice to clients. Your main responsibilities will include:
- Conducting in-depth penetration testing, code reviews, and security analysis.
- Leading research and reverse engineering efforts on emerging technologies and attacks.
- Guiding clients through secure design practices such as threat modelling and attack surface enumeration.
- Mentoring junior team members and contributing to internal tools and research initiatives.
- Working on diverse projects, often remotely, but with travel to client sites when needed.
Skills
To be successful in this role, you should have
- Solid experience in software or hardware security
- In-depth technical expertise in driver code auditing, bootloaders, secure boot, and embedded system architectures
- Proficiency in C/C++ for security-focused code review
- A solid understanding of firmware reverse engineering and security analysis
- Strong communication skills – you’ll need to explain complex vulnerabilities to clients in clear terms
- A Bachelor’s degree in Computer Science, Engineering, or a related field is desirable.
Additionally, it is highly beneficial if you have experience with any of the following:
- Cryptography knowledge
- Black-box reverse engineering
- Familiarity with UEFI platform firmware, ARM/x86 architectures, and secure boot architectures
- Experience with SDR, wireless protocols (Bluetooth, Wi-Fi, ZigBee, etc.), or storage controllers like NVMe, SATA, and eMMC.
Benefits
We believe great work deserves great support. That’s why we offer a benefits package designed to look after you, your family, and your future.
We Offer
Generous annual leave
- Starting at 15 days, increasing to 20 days with service, plus 3 floating days from day one to use at your leisure
Plan for your future
- 401(k) with up to 5% company match
Life protection for peace of mind
- Life assurance at 1x your annual salary
Comprehensive health cover
- Medical, dental, and vision plans available for you and your family, with flexible options to suit your needs
Financial protection when it matters most
- Income protection through short and long term disability cover, plus accidental death and disability insurance
Share in our success
- Opportunity to invest through our SAYE and Employee Stock Purchase Plan
