Advanced Embedded Security Engineer

Advance Product Security Engineer for the Print and Encode business unit, reporting to the Director of Systems Engineering. This role will function as the Advanced Product Security Engineer for the Print and Encode business unit, reporting to the Director of Systems Engineering. This role is focused on ensuring the security of our products throughout the development lifecycle and is critical to ensuring our connected devices are developed with secure-by-design principles, mitigating enterprise risk, and maintaining the resilience of our product ecosystem against evolving threats. The security engineer will proactively embed security into the development process for both software and firmware, particularly for our thermal printers and barcode scanners. This position involves responding to security issues, managing customer security inquiries, and collaborating with the corporate product security team to adhere to best practices. The goal is to build secure, resilient products and maintain customer trust by making security a top priority in every stage of development.

Location- ***Role is required to be onsite in Lincolnshire, IL office (Hybrid- Minimum of 3 days in the office per week).

• Collaborate with stakeholders, including product management and engineering, to define and prioritize security requirements for new and existing products.
• Lead and participate in design and architecture reviews to conduct threat modeling and ensure security is built into software and firmware from the ground up.
• Develop, implement, and enforce security controls and best practices throughout the secure software development lifecycle (SSDLC).
• Collaborate closely with hardware, firmware, software, and systems engineering teams to ensure security requirements are seamlessly integrated without compromising product functionality or time-to-market.
• Respond to, investigate, and lead the remediation of product security vulnerabilities and participate when incidents happen.
• Conduct and oversee security assessments, including penetration testing and code reviews, to proactively identify and mitigate security flaws.
• Serve as the primary technical contact for responding to customer security questionnaires, audits, and inquiries, clearly communicating our security posture.
• Align with the corporate security team to implement and adapt corporate security policies, standards, and best practices within product development.
• Create and maintain detailed documentation for security architecture, and security best practices.
• Develop and deliver security training to development teams to foster a culture of security awareness and accountability.
• Stay current with the latest security threats, vulnerabilities, and mitigation techniques relevant to IoT, embedded systems, software, and firmware.
• Mentor junior engineers and act as a security champion and subject matter expert within the engineering organization.
• Evaluate, implement, and manage security tools (e.g., SAST, DAST, SCA) to automate security testing within the CI/CD pipeline.

Do you have experience in Training & development?, Do you have a Bachelor's degree?, * Bachelor's degree in Computer Science, Computer Engineering, Cybersecurity, or a related technical discipline.

• 6+ years of experience

• Hands-on experience in product security, embedded systems security, or a closely related field.

• Hands-on experience securing embedded systems, software, or IoT devices., * Master's degree in a relevant engineering or cybersecurity field.

• Proven experience integrating security into the CI/CD pipeline and product development lifecycle.

• Proficiency in one or more programming languages such as C, C++, Python, or Java. (Not necessary but desirable)

• Deep technical expertise in Hardware Security (e.g., TPM, TrustZone, secure boot, tamper resistance, cryptography).

• Experience specific to IoT, connected devices, or automatic identification and data capture (AIDC) technologies.

• Familiarity with industry security standards and compliance requirements (e.g., IEC 62443, FIPS 140).

• Industry-recognized security certifications (e.g., CISSP, CSSLP, GSEC, or offensive security certifications).

• Strong communication skills with the ability to articulate complex security risks to both technical teams and executive leadership.

• Licenses, Certifications, or Special Qualifications:

• Security certifications such as CISSP, CSSLP, GSEC, or equivalent are a plus.

Location- ***Role is required to be onsite in Lincolnshire, IL office (Hybrid- Minimum of 3 days in the office per week).

Pulled from the full job description

• Parental leave
• Paid time off
• Employee assistance program, $122,800.00 - $184,200.00 Annual

Incentive Compensation: In addition to base pay, Zebra offers this role the opportunity to earn a performance-based annual cash incentive, at a target equal to 12% of base pay, in accordance with the terms of the applicable incentive plan.

Zebra Total Rewards:

Zebra Total Rewards includes more than just pay and is structured to meet the needs of our changing global business and evolving talent. We are committed to providing our employees with a benefits program that is comprehensive and competitive - including healthcare, wellness, inclusion networks, and continued learning and development offerings. We offer community service days, in addition to the traditional insurances, compensation, parental leave, employee assistance program and paid time off offerings depending on the country where you work.

Salary offered will vary depending on your location, job-related skills, knowledge, and experience.

Additionally, all Zebra roles are eligible for cash incentive programs. For example, sales roles have additional opportunity to earn substantial variable compensation tied to quota achievement. In most other roles, the Zebra annual cash incentive program links Company and individual performance together. Some roles may also be eligible for long-term incentive equity awards., We understand the importance of work-life balance and wellbeing, which is why we offer flexibility for our teams including: hybrid work, adaptable hours, Summer Flex Fridays, Focus Fridays, and an annual companywide well-being day to promote revitalization and success.