Product Security Engineer

Framingham, MA - USA

Monthly Salary: $ 123500 - 169850

Posted on: Yesterday

Vacancies: 1 Vacancy

Job Summary

At Bose Corporation we believe sound is the most powerful force on earth and for over 60 years we have been a company built on innovation excellence and independence. Privately owned fiercely customer-focused and driven by our values we continue to lead industries and transform lives through sound.

Today Bose Corporation is entering an exciting new era. Across multiple global Business Units and Global Functions we are shaping the future of audio technology automotive luxury and premium experiences. We invite you to join us in this transformation.

Job Description

Join the future of product security at Bose

At Bose security and stability are the two pillars of our product innovation. We are seeking for a Security Engineer tosupport the security initiatives for our consumer electronics products. You will play a central role in product security and have the ability to improve the product security program to meet higher level enterprise security objective.With new products launching every yearthere is a constant need to ensure security in our on-the-go and in-the-home platforms.The ideal candidate has extensive secure software development experience in a fast-paced agile product environment. Join our product security team to power the next wave of innovation at Bose.

Principal Duties and Responsibilities

As a Security Engineer you will work as an integral part of the Product Security team to embed security practices into every aspect of the secure development pipeline. Our development philosophy is to enable developers to write secure code faster.

Responsibilities for this job include:

Architecting and designing products to guarantee secure practices data confidentiality system integrity
Engineering and implementing ARM Trust Zone secure applets implementing a cryptographic IOT device identity and root of trust
Streamlining secrets key management cryptography and credential management
Defining Security requirements and conducting security assessments
Advising engineering peers on security mattersin the form of architectural guidance code/design reviews and solution development
Improving vulnerability discovery patching process and leading responses to external security threats
Codeindependentlywith minimal oversightand designsystemarchitecture with guidance
Collaborating with cross-functional teams like product firmware devops cloud engineering manufacturingand program management.
Performing security testing on products and supporting with the security fix implementations
Designing and maintaining private X.509 and JWK chains of trust used for validating authenticity of portable audio devices
Stay up-to-date on security news relevant technologies plug into user groups understand trends and security opportunities
Be a stakeholder on interdisciplinary teams advocating for security

Qualifications

Experience developingfor embedded systems and Linux platforms in C C
Linuxsystem securityhardeningtechniques
Strong knowledge ofcryptographictheoryandengineeringincluding encryption hashing signing digital certificates and hardware security modules (HSMs)
Building internalsecurityapplicationswith cryptographicguaranteessuchas firmware encryption and signing custom developer enablement toolssecureassetprovisioning etc.
Experience mitigatingdependency orcode-level defects including memory-managementissues inputvalidation timing attacks broken authenticationside channels.
Experience with computer networking with a focus on security and IOT applications
Bachelors degree in Computer Science or equivalent.A masters degree is beneficial
6 or more years of industry experience working in firmware development with a focus on security. An advanced degree can contribute towards experience

What you can expect at Bose

Working with wicked smart super cool people
A business commitment to security stability and quality
Competitive salary benefits and pension
A culture of excellence respect opportunity and passion for innovation

At Bose youre inspired to be and do your best and are rewarded for your unique talents! Our compensation is thoughtfully tailored to your skills experience education and location and goes beyond base salary. The hiring range for this position in the primary work location of Framingham Massachusetts is: $123500-$ hiring range for other Bose work locations may vary. In addition to competitive base pay we offer rewards including bonus programs comprehensive health and welfare benefits a 401(k) plan plus exclusive perks designed to support your wellbeing and a generous employee discount where you can immerse yourself in our products and experiences. We are a proudly independent companydriven by purpose guided by our values and united by a belief in the power of sound. As the world leader in audio experiences were creating whats nextpushing boundaries and delivering transformative sound experiences for people everywhere. Join us and make your next career move a mic-drop. Lets Make Waves.

Bose is an equal opportunity employer. We evaluate qualified applicants without regard to race color religion sex sexual orientation gender identity genetic information national origin age disability veteran status or any other legally protected characteristics. The EEOCs Know Your Rights: Workplace discrimination is illegal Poster is available here: Bose is committed to providing reasonable accommodations to individuals with disabilities. If you require reasonable accommodation in completing this application interviewing completing any pre-employment testing or otherwise participating in the employee selection process please direct your inquiries to Please include Application Accommodation Request in the subject of the email.

Our goal is to create an atmosphere where every candidate feels supported and empowered in the interviewing process. Diversity and inclusion are integral to our success and we believe that providing reasonable accommodation is not only a legal obligation but also a fundamental aspect of our commitment to being an employer of choice. We recognize that individuals may have different needs and requirements based on their abilities and we provide reasonable accommodations to ensure ideal conditions are met during the application process.

Required Experience:

Job Description

Join the future of product security at Bose

Principal Duties and Responsibilities

Responsibilities for this job include:

Architecting and designing products to guarantee secure practices data confidentiality system integrity
Engineering and implementing ARM Trust Zone secure applets implementing a cryptographic IOT device identity and root of trust
Streamlining secrets key management cryptography and credential management
Defining Security requirements and conducting security assessments
Advising engineering peers on security mattersin the form of architectural guidance code/design reviews and solution development
Improving vulnerability discovery patching process and leading responses to external security threats
Codeindependentlywith minimal oversightand designsystemarchitecture with guidance
Collaborating with cross-functional teams like product firmware devops cloud engineering manufacturingand program management.
Performing security testing on products and supporting with the security fix implementations
Designing and maintaining private X.509 and JWK chains of trust used for validating authenticity of portable audio devices
Stay up-to-date on security news relevant technologies plug into user groups understand trends and security opportunities
Be a stakeholder on interdisciplinary teams advocating for security

Qualifications

Experience developingfor embedded systems and Linux platforms in C C
Linuxsystem securityhardeningtechniques
Strong knowledge ofcryptographictheoryandengineeringincluding encryption hashing signing digital certificates and hardware security modules (HSMs)
Building internalsecurityapplicationswith cryptographicguaranteessuchas firmware encryption and signing custom developer enablement toolssecureassetprovisioning etc.
Experience mitigatingdependency orcode-level defects including memory-managementissues inputvalidation timing attacks broken authenticationside channels.
Experience with computer networking with a focus on security and IOT applications
Bachelors degree in Computer Science or equivalent.A masters degree is beneficial
6 or more years of industry experience working in firmware development with a focus on security. An advanced degree can contribute towards experience