Product Security Engineer
Share
Job Location:
Monthly Salary:
Posted on:
30+ days ago
Vacancies:
1 Vacancy
Job Summary
Toradex is a global company strongly focused on engineering & technology. Were powered by a diverse & uniquely gifted workforce. We pursue the best people to propel our innovative vision of embedded computing and IoT. If youre interested in being a driving force at an agile technology company engineering clever computing solutions & helping other companies bring their products to life we should talk.
Overview
As a Product Security Engineer at Toradex youll be responsible for the implementation validation and maintenance of security features in Toradexs embedded software stack. That means hands-on low-level work with bootloaders Linux kernel security features secure software updates and more.
We aim to make embedded software development easy and approachable which means that our engineers have to go beyond just feature enablement. Your work will involve making the developer experience of working with low-level security features as smooth as it possibly can be. Youll work on systems used in critical industries like healthcare industrial automation and robotics.
Responsibilities
- Security feature enablement: Bring up security features on new hardware. Every new product we release we strive to have a uniform straightforward experience for enabling basic hardware security features like secure boot ARM TrustZone/OP-TEE and hardware-backed encryption.
- System-level hardening: Toradex maintains Torizon OS a secure production-ready embedded Linux OS. Making sure that security features fit into the whole stack and that configurations are secure-by-default for the most common and supported workflows is a key part of the job. Understanding how everything fits together is a must.
- Vulnerability management: Monitor upstream CVEs assess their impact on Toradex products and their likely impact on Toradex customers products. Apply patches and mitigations. Help draft security advisories and write VEX documents. Work on and maintain internal tooling for vulnerability management.
- Security testing and automation: Automate test coverage of security features. Familiarity with LAVA or other hardware-in-the-loop embedded testing methodologies and frameworks is a strong plus.
Qualifications and Experience
- Bachelors or Masters degree in Computer Science Electrical Engineering Cybersecurity or equivalent experience
- 3 years of experience in embedded systems security or adjacent areas (e.g. Linux security engineering)
- Hands-on experience with bootloaders (e.g. U-Boot) kernel security features and embedded Linux distributions/build systems (Yocto/OpenEmbedded buildroot etc.)
- Solid C/C coding and debugging skills
- Experience with automating security checks in CI/CD pipelines
- Knowledge of threat modeling/risk modeling methodologies and how they relate to regulatory and standards compliance is a plus
- Knowledge of security evaluation and analysis tools like fuzzers and static analysis tools is a plus
What we offer
- Agile globally oriented and intercultural corporate culture.
- Work on the latest hardware technology with early access to majorSoCvendor
- Enjoy a flat hierarchy where you may truly shape our hardware and software offerings
- Count on a diverse team of experienced hardware and software engineers
- Variety of knowledge sharing training and self-development opportunities
- The opportunity to play a key role in shaping your own work processes and your work environment.
- Contemporary employment conditions modern office space and a flexible working environment.
- Opportunities for your personal development.
- Meal allowance (flash card)
- Health and dental care
- Flexible working hours
- Parking space
- Anniversary day off
Disclaimer: This is not a temporary role. It is a long-term full-time opportunity.
Toradex is a leader in embedded computing serving innovative products to industrial medical automotive & IoT companies creating feature-rich & intelligent systems for demanding applications e.g. supercars self-driving tractors patient monitoring systems to name a few.
We provide effective & robust embedded computing solutions and strive for the best development experience in the industry with a focus on intelligent hardware design innovative software solutions & free comprehensive support. Our relationship with our customers ensures that we all succeed and it allows us to participate in the realization of incredible new products. Our products are directly sold to more than 3000 industrial customers in over 70 different countries worldwide.
For more information
- Visit our Homepage:
- Connect with us and join our community!:
- Our YouTube Channel
Required Experience:
IC
Key Skills
- APQP
- Six Sigma
- GD&T
- Root cause Analysis
- CAD
- Project Leadership
- SolidWorks
- Mechanical Engineering
- Quality Management
- Product Development
- Catia
- Manufacturing
About Company
Toradex Computer on Modules are pin-compatible and highly miniaturized embedded computing solutions deployed within a wide range of markets and industries.
