Responsibilities
- Assess and guide security for existing and new products
- Lead efforts in establishing and maintaining secure boot processes for embedded devices, ensuring the integrity and authenticity of firmware and software components during boot-up sequences.
- Collaborate with hardware engineers to integrate and manage HSM solutions within embedded systems, ensuring robust encryption, key management, and secure cryptographic operations.
- Work closely with cross-functional teams, including software developers, hardware engineers, quality assurance, and product management, to integrate security into the entire product development lifecycle.
Requirements
- MS/BS degree in Computer Science, Engineering or equivalent
- 5+ years of experience in product or cybersecurity security engineering role
- Expertise in secure boot processes, HSM integration, and BSP maintenance for embedded devices
- Strong understanding of cryptographic principles, protocols, and algorithms
- Expertise in programming languages commonly used in embedded systems development (e.g., C, C++, Python)
- Familiarity with industry-standard security frameworks, protocols, and compliance requirements (e.g., FIPS 140-2, Common Criteria)
Nice to Have
- Proven experience working with automotive embedded systems, including Electronic Control Units (ECUs), in-vehicle networks (e.g., CAN, LIN, Ethernet), and automotive-specific protocols (e.g., AUTOSAR)
- Familiarity with automotive security standards and guidelines such as ISO/SAE 21434, UNECE WP.29, and the Automotive Cybersecurity Best Practices published by organizations like SAE International and Auto-ISAC
- Knowledge of vehicle diagnostics protocols (e.g., OBD-II, UDS) and Over-The-Air (OTA) update mechanisms used in automotive embedded systems, including security considerations for remote software updates and maintenance
Compensation
Base salary range: $150,000 - $242,000 USD annually, plus equity and benefits.