Lead Software Engineer, Device Security
About The Position
As a Lead Software Engineer specializing in Device Security, you will play a key role in helping HP IQ lead the industry in advancing the security of AI devices, and empowering business and users with control of their privacy and personal data in the quickly evolving AI-driven world. Privacy and security are table stakes at HP IQ, and absolutely integral to our success as a dynamic company with a deep commitment to product. You will own projects through their entire life cycle, building secure systems for our innovative devices by threat modeling, designing secure architectures, and implementing them. This role focuses on designing and implementing solutions across the entire software stack of embedded systems, PCs, and server class workstations. This includes the way they interface with the outside world, in a way that provides joyful user experiences without compromising privacy & security. The technology that you will create will maintain and strengthen the trust that HP IQ promises to our customers.
Requirements
- 6+ years of experience in secure programming in embedded system, AOSP, or Windows environments, primarily in C, C++, or Java.
- Strong understanding of general embedded systems security concepts, including establishing roots of trust, secure boot, cryptography, PKI, or application sandboxing.
- Experience in firmware security, OS-level security, or network security.
- Demonstrated ability to architect and lead multi-disciplinary projects from concept to deployment.
- Experience in designing secure interfaces with biometric sensors, custom PKI handling, or factory flow processes.
- Ability to work closely with cross-functional teams to assess attack surface and threat models across many different features.
- Deep understanding (OR deep desire to learn) of cryptography, security, and privacy theory and practices.
Nice To Haves
- Background in embedded systems like consumer electronics, IoT, medical, or payment devices or systems.
- Experience with AOSP and Linux security, including TrustZone, TEE, AVB, Keystore, and SELinux.
- Experience with privacy compliance standards like GDPR, CCPA, HIPAA, or ISO.
Responsibilities
- Lead the design and implementation of embedded device security architecture from the ground up. This includes using the best industry standard cryptography practices for things like secure key management systems, hardware secure boot, PKI, efficient encryption of data, and more.
- Collaborate cross-functionally with the CoreOS, Firmware, Design, and Cloud Services teams to create robust security features.
- Develop custom TrustZone or native kernel applications to enhance hardware-backed identity solutions and data protection.
- Work on high-profile projects, such as secure channels between devices, protecting personal data, and automatic theft detection; which all require secure and efficient data handling.
- Interface with biometric sensors to create secure channels for data flow inside and outside device boundaries.
- Assist in vulnerability management, and apply secure SDLC practices across the company.
Benefits
- Health insurance
- Dental insurance
- Vision insurance
- Long term/short term disability insurance
- Employee assistance program
- Flexible spending account
- Life insurance
- Generous time off policies, including;
- 4-12 weeks fully paid parental leave based on tenure
- 11 paid holidays
- Additional flexible paid vacation and sick leave (US benefits overview)
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
