Security Engineer - Embedded Systems

Role : Security Engineer - Embedded Systems

Location : Irvine, CA 5x a week onsite - RELOCATION REIMBURSEMENT AVAILABLE

Compensation : $140,000-190,000 base

The client is one of the world's largest manufacturers of network products and IoT / smart home devices.

Job Title : Security Engineer - Embedded Systems

As a Security Engineer specializing in Embedded Devices, you will play a crucial role in safeguarding advanced embedded systems by identifying vulnerabilities and mitigating security risks. Your primary responsibilities will include conducting penetration testing, performing threat modeling, and leading security risk assessments to ensure the highest level of protection. You'll also be responsible for managing incident response, guiding product cybersecurity certifications, and developing custom security tools to optimize testing processes. This role requires strong collaboration with cross-functional teams, integrating security best practices throughout the Software Development Life Cycle (SDLC). Additionally, you will deliver security training, stay abreast of global cybersecurity standards, and conduct audits to maintain compliance with industry regulations.

Key Responsibilities :

• Penetration Testing : Conduct penetration testing on embedded devices to uncover vulnerabilities. Provide detailed remediation advice and create comprehensive test reports.
• Threat Modeling & Security Assessment : Identify and assess potential risks through threat modeling. Perform in-depth security assessments at both the architecture and functional levels to detect security gaps.
• Incident Response & Vulnerability Management : Lead incident response efforts, including investigation, containment, remediation, and post-incident reviews. Collaborate with internal teams to ensure effective resolution.
• Cybersecurity Certification : Assess product security certification requirements and collaborate with teams to achieve and maintain compliance with relevant standards.
• Security Tool Development : Create and enhance penetration testing tools, automated testing platforms, and scripts to streamline testing processes and increase accuracy.
• SDLC Integration : Contribute to the enhancement of the company's SDLC processes by ensuring security is integrated into every stage of product development.
• Global Standards & Regulations Compliance : Stay informed on global cybersecurity standards and regulatory requirements, and help implement security baselines across embedded devices.
• Security Training : Partner with product, R&D, and QA teams to create and deliver training on security best practices aimed at mitigating insider threats.
• Security Auditing : Perform security audits to ensure compliance with cybersecurity standards (e.g., ISO 27001, NIST, GDPR) and relevant regulatory frameworks.

Requirements :

Required Qualifications :

Soft Skills :

Benefits :

Salary : $140,000 - $190,000