Sr Software Engineer, Device Security

Lead the design and implementation of embedded device security architecture from the ground up. This includes using the best industry standard cryptography practices for things like secure key management systems, hardware secure boot, PKI, efficient encryption of data, and more.

• Collaborate cross-functionally with the CoreOS, Firmware, Design, and Cloud Services teams to create robust security features.

• Develop custom TrustZone or native kernel applications to enhance hardware-backed identity solutions and data protection.

• Work on high-profile projects, such as secure channels between devices, protecting personal data, and automatic theft detection; which all require secure and efficient data handling.

• Interface with biometric sensors to create secure channels for data flow inside and outside device boundaries.

• Assist in vulnerability management, and apply secure SDLC practices across the company.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

6+ years of experience in secure programming in embedded system, AOSP, or Windows environments, primarily in C, C++, or Java.

• Strong understanding of general embedded systems security concepts, including establishing roots of trust, secure boot, cryptography, PKI, or application sandboxing.

• Experience in firmware security, OS-level security, or network security.

• Demonstrated ability to architect and lead multi-disciplinary projects from concept to deployment.

• Experience in designing secure interfaces with biometric sensors, custom PKI handling, or factory flow processes.

• Ability to work closely with cross-functional teams to assess attack surface and threat models across many different features.

• Deep understanding (OR deep desire to learn) of cryptography, security, and privacy theory and practices. - Background in embedded systems like consumer electronics, IoT, medical, or payment devices or systems.

• Experience with AOSP and Linux security, including TrustZone, TEE, AVB, Keystore, and SELinux.

• Experience with privacy compliance standards like GDPR, CCPA, HIPAA, or ISO.