Security Engineer, Embedded Devices

Security Engineer - Embedded Devices
Location: Irvine, On-site
About the Role
A leading global provider of networking and smart home technology is seeking a Security Engineer for Embedded Devices to help protect cutting-edge embedded products by identifying and mitigating vulnerabilities.

This role is crucial in conducting penetration tests, performing threat modeling, and leading security risk assessments to ensure robust cybersecurity measures. You will collaborate with cross-functional teams to integrate security best practices into the Software Development Life Cycle (SDLC) while also managing incident response activities and driving product cybersecurity certifications.
Key Responsibilities:

• Penetration Testing: Perform penetration testing on embedded products to identify vulnerabilities and provide remediation recommendations through detailed test reports.
• Threat Modeling & Security Assessment: Identify and evaluate security risks at the architectural and functional levels.
• Incident Response & Vulnerability Management: Lead investigation, containment, remediation, and post-incident analysis to ensure effective resolution.
• Product Cybersecurity Certification: Analyze security certification requirements and coordinate with teams to ensure compliance.
• Security Tool Development: Design and develop penetration testing tools, automated testing platforms, and scripts to improve security testing.
• SDLC Integration: Enhance security practices throughout the development process to ensure secure product design.
• Global Cybersecurity Standards & Compliance: Stay updated on cybersecurity standards (ISO 27001, NIST, GDPR, etc.) and implement security baselines in embedded devices.
• Security Training: Develop and deliver security training to engineering, product, and QA teams to promote best practices.
• Security Auditing: Conduct audits to verify compliance with regulatory and industry security requirements.

Required Qualifications:

• Bachelor's degree in Computer Science, Information Security, or related field (or equivalent work experience).
• Proven experience as a Security Engineer for Embedded Devices or a related role.
• Strong knowledge of protocol security design, cryptography, security frameworks, and common vulnerabilities.
• Hands-on experience with security tools such as Burp Suite, Nmap, Kali, Nessus, Metasploit, IDA, Ghidra, etc.
• Ability to develop or customize penetration testing tools and fuzzing strategies.
• Proficiency in code audits and reverse engineering techniques.
• Strong programming skills in at least one language (e.g., C/C , Python, Bash, PowerShell).
• Security certifications such as CISSP, OSED, OSWP are a plus.

Soft Skills:

• Excellent communication and collaboration skills.
• Ability to work independently while contributing to cross-functional teams.
• Strong attention to detail and commitment to high-security standards.

What We Offer:

• Comprehensive healthcare coverage (medical, dental, and vision).
• 401k contributions and financial security benefits.
• Career development programs, including bi-annual reviews and performance-based growth opportunities.
• Workplace perks, including free snacks, drinks, and catered Friday lunches.
• Health and wellness benefits, including a gym membership.
• Quarterly team-building events and company-sponsored activities.

This is a unique opportunity to work in a fast-paced, security-focused environment where you can shape the future of embedded device security. If you are passionate about cybersecurity and embedded systems, we encourage you to apply!

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.