Embedded Security Engineer

Responsibilities

• Assess and guide security for existing and new products
• Lead efforts in establishing and maintaining secure boot processes for embedded devices, ensuring the integrity and authenticity of firmware and software components during boot-up sequences.
• Collaborate with hardware engineers to integrate and manage HSM solutions within embedded systems, ensuring robust encryption, key management, and secure cryptographic operations.
• Work closely with cross-functional teams, including software developers, hardware engineers, quality assurance, and product management, to integrate security into the entire product development lifecycle.

Requirements

• MS/BS degree in Computer Science, Engineering or equivalent
• 5+ years of experience in product or cybersecurity security engineering role
• Expertise in secure boot processes, HSM integration, and BSP maintenance for embedded devices
• Strong understanding of cryptographic principles, protocols, and algorithms
• Expertise in programming languages commonly used in embedded systems development (e.g., C, C++, Python)
• Familiarity with industry-standard security frameworks, protocols, and compliance requirements (e.g., FIPS 140-2, Common Criteria)

Nice to Have

• Proven experience working with automotive embedded systems, including Electronic Control Units (ECUs), in-vehicle networks (e.g., CAN, LIN, Ethernet), and automotive-specific protocols (e.g., AUTOSAR)
• Familiarity with automotive security standards and guidelines such as ISO/SAE 21434, UNECE WP.29, and the Automotive Cybersecurity Best Practices published by organizations like SAE International and Auto-ISAC
• Knowledge of vehicle diagnostics protocols (e.g., OBD-II, UDS) and Over-The-Air (OTA) update mechanisms used in automotive embedded systems, including security considerations for remote software updates and maintenance

Compensation

Base salary range: $150,000 - $242,000 USD annually, plus equity and benefits.