Embedded Product Security Architect
Sandisk · Irvine, CA · 2 wk ago
Information TechnologyFull-time
About the role
The Security Platform team at Sandisk is seeking a Product Security Architect to lead the security architecture function for the Flash business unit’s product portfolio. The ideal candidate will be responsible for defining the roadmap for security architecture, driving threat modeling, and collaborating with cross-functional teams to ensure security requirements are integrated into product design and development.
Responsibilities
- Interface with ecosystem, product security assurance (PSA) and product teams to gather security requirements from customers, regulatory, compliance, risk, and industry trends.
- Define the roadmap for security architecture for Flash products, including firmware and hardware, and secure manufacturing infrastructure.
- Drive threat modeling and reference embedded security architectures for product lines and drive BU wide adoption.
- Architect interactions between various system components and peripherals.
- Contribute to requirements and strategy for verification and validation of security features.
- Lead internal security reviews of developed products (HW and/or embedded SW), and guide external evaluations and compliance activities.
- Collaborate with multi-functional teams, including hardware design, firmware development, and product security assurance, to ensure that security requirements are incorporated into product design and development processes.
- Follow and promote a secure design mindset from conception to productization across multiple projects and product lines.
- Keep abreast of emerging industry security standards and best practices to guide the team to raise the bar on security.
Qualifications
- Master/PhD degree in electrical engineering, computer science, or a related field, preferably with a specialization in embedded security (HW and/or SW).
- 10+ years of experience in embedded product security.
- Expert understanding of practical modern cryptography.
- Proficient in security protocols, cryptography, authentication, attestation, authorization, secure boot, secure communication, digital signatures, certificates and post-quantum cryptography.
- Solid understanding of creating and validating threat models.
- Experience providing technical leadership and mentoring to other architects and/or development teams.
- Experience in driving FIPS, Common Criteria certification is an asset.
Preferred Knowledge
A strong preference for knowledge of data storage controllers' architectures.
Skills
- Strong analytical, problem solving and creative thinking skills.
- Strong commitment to technical quality and proper documentation during all phases of design and development.
- Excellent communication skills; interact with suppliers, senior management, and other team members professionally, in writing, in person, and virtually, as necessary.