Sr. Embedded Security Engineer
SPAN · San Francisco, CA · 2 wk ago
Information TechnologyFull-time
What You’ll Do (Responsibilities)
- Architect and develop robust security infrastructure, including cryptographic services and other security-critical components.
- Implement secure and authenticated boot flows to ensure device and firmware integrity from power-on.
- Design and secure Over-the-Air (OTA) update systems, ensuring robust encryption, cryptographic signing, authentication, and anti-rollback protections for remote deployments.
- Design and integrate security provisioning protocols into the factory manufacturing process.
- Establish secure device identities and root-of-trust architectures utilizing onboard hardware security modules (HSMs/TPMs).
- Design and implement secure debug architectures to safeguard physical and logical interfaces (e.g., JTAG, SWD, UART) against unauthorized access and reverse engineering.
- Harden Linux and POSIX-based operating systems to minimize attack surfaces and secure the software stack.
- Rapidly prototype new security features, helping to identify vulnerabilities, design mitigations, and test continuous security improvements.
What You’ll Bring (Qualifications)
- Experience: 6+ years of professional experience in hardware security, embedded systems engineering, or a closely related field.
- Security Hardware: Advanced hands-on experience configuring and deploying specialized security hardware, including TPMs and HSMs.
- Software Development: Strong programming proficiency in C/C++, Rust and Python for developing secure, high-performance software and automation tools.
- OS Security: Demonstrated experience designing, architecting, and implementing security solutions at the operating system level.
- Systems Engineering: Core expertise in bare-metal embedded systems development and firmware security.
- Linux Ecosystem: Familiarity with building and configuring custom Linux distributions using Yocto Linux.