Security Firmware Engineer

ESSENTIAL DUTIES AND RESPONSIBILITIES:

• Development of various cryptography-based security features such as data encryption, Secure Boot, and Device Attestation.
• Integrate these security protocols and features into the SSD data and control flows to ensure a robust and secure system. Additionally, investigate and resolve any security protocol compatibility issues that may arise.
• Investigating failures, documenting bug reports, and providing valuable assistance to product teams in identifying and resolving issues.
• Debugging, optimizing, and validating the Firmware on SoC platforms, as well as bringing up of FPGA and ASIC.
• Contribute to the Security Development Lifecycle of the Firmware by supporting its development at different stages, including design, threat analysis, implementation, validation, vulnerability testing, certification, and audit.

Requirements

REQUIRED:

To qualify for this position, an ideal candidate would have/be

• A degree in Computer Science, Electrical/Computer Engineering, Software Engineering, or a related field.
• 8 - 10 years of experience in embedded programming, with proficiency in C/C++ and one or more of the following: Python, Rust, Go.
• Experience in firmware code review, CI/CD test and validation methodology, as well as static and dynamic code analysis. Familiarity with the Agile software development process life cycle is also desired.
• Proficiency in failure analysis in debugging an embedded firmware application, using debuggers such as Lauterbach.
• An engineer who can take ownership of given features and manage them from start to finish. Being self-motivated and driven is essential for this role.
• Good communication skills and be able to work effectively with cross-functional teams.

What Sets You Apart

• Detailed knowledge of RISC-V Instruction Set Architectures (ISA)
• Technical expertise in applied cryptography and firmware/hardware security, including knowledge of data encryption, trusted execution environment, secure boot, and device attestation.
• Knowledge of storage controller architectures and security protocols, such as TCG Opal/Ruby/Pyrite, IEEE 1667, SPDM, and IDE.
• Familiarity with writing code in Github repository and it’s CI/CD testing framework.