Embedded Security Engineer
About The Position
About Base Base is America’s next-generation power company. We’re rebuilding the foundation of modern civilization–electricity–by deploying a vast network of distributed batteries that is transforming today’s fragile, centralized grid into a resilient and abundant system. We are engineers, operators, and creatives solving some of the most complex, interdisciplinary challenges of our time. About the Role Base deploys hardware in the field, real devices controlling real power. As the first Embedded Security Engineer, you will be responsible for securing the software, firmware, and hardware that operate our distributed energy systems. This is a 0 → 1 role. You will define the security architecture for embedded controllers, build secure boot and firmware integrity systems, protect device communications, and ensure our hardware is resilient against tampering, spoofing, and adversarial behavior. You will work closely with embedded engineers, hardware engineers, controls engineers, and backend teams to design systems that are secure by default and able to withstand real world attacks in a fast moving environment where your decisions directly influence our deployed systems.
Requirements
- Strong experience in embedded systems, firmware engineering, or hardware security
- Deep understanding of secure boot, firmware signing, key storage, and hardware root of trust implementations
- Experience with embedded Linux, RTOS environments, or bare metal firmware
- Knowledge of cryptography fundamentals, secure communication protocols, and identity or authentication systems
- Hands on experience with debugging tools, lab hardware, oscilloscopes, and JTAG or SWD interfaces
- Familiarity with industrial or field device security, especially in IoT, robotics, energy systems, or other distributed physical systems
- Ability to analyze attack surfaces across hardware, firmware, and communication layers
- Strong ability to collaborate across hardware, embedded, backend, and operations teams
- Comfortable making foundational architectural decisions in a small, fast moving engineering team
Responsibilities
- Design and implement security architecture for embedded devices and hardware systems used in Base’s distributed energy network
- Develop secure boot, firmware signing, update integrity, and hardware root of trust mechanisms
- Protect device identity, authentication, authorization, and key lifecycle management on physical hardware
- Harden firmware and embedded Linux environments against exploitation, tampering, and unauthorized modification
- Conduct threat modeling, penetration testing, and vulnerability assessments on device level hardware and communication protocols
- Analyze and secure industrial communication interfaces including CAN, Modbus, serial, Ethernet, and wireless interfaces
- Implement secure communication between devices and cloud or control plane services using mutual TLS, certificate rotation, and encrypted channels
- Work with hardware and manufacturing teams to define secure provisioning, device enrollment, and supply chain security processes
- Investigate device failures or anomalous behavior and lead root cause analysis for potential security related events
- Define and document best practices for embedded security, operational procedures, and long term systems hardening
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Entry Level
Education Level
No Education Listed
Number of Employees
101-250 employees
