Security Firmware Engineer
About The Position
We are seeking a Security Firmware Engineer to join Sandisk Security Platform team and contribute to the development of firmware‑level security features across our product lines. This role requires hands‑on experience with security firmware and/or applied cryptography. It is suitable for early‑career engineers with direct security firmware exposure as well as mid‑level engineers who have already delivered security or crypto‑related features in production firmware. The engineer will work closely with firmware, silicon, and security architecture teams on secure boot, secure update, and device attestation mechanisms, contributing across design, implementation, debug, and validation.
Requirements
- Bachelor’s or Master’s degree in Computer Engineering, Electrical Engineering, Computer Science, or related field.
- 2–6 years of embedded firmware experience, with demonstrated hands‑on experience in at least one of the following: Security firmware features (e.g., secure boot, authentication, secure update, device identity, key management), or Implementation or integration of cryptographic functionality in embedded or firmware environments.
- Strong proficiency in C and/or C++ and/or RUST for low‑level firmware development.
- Experience debugging firmware using JTAG, logs, hardware bring‑up tools, or simulators.
- Practical understanding of security fundamentals, such as: Roots of trust and boot chains, Cryptographic primitives (hashes, symmetric/asymmetric crypto, certificates), Firmware trust boundaries and privilege levels.
- Ability to reason about security impact, correctness, and failure modes in low‑level systems.
Nice To Haves
- Experience with secure boot, measured boot, or attestation implementations.
- Familiarity with key provisioning, secure storage, or certificate chains.
- Experience with SoC architecture, ROM/FW interaction, or storage firmware.
- Exposure to security vulnerabilities and mitigations in embedded systems.
- Experience with Python or scripting for security testing, validation, or tooling.
- Familiarity with secure coding guidelines and industry best practices.
Responsibilities
- Design, implement, and integrate cryptographic functionality and security‑critical firmware features, such as secure boot, secure update, encryption, attestation, and key management.
- Collaborate with firmware, hardware, and system security architects to define and implement trust boundaries and root‑of‑trust designs.
- Debug, optimize, and validate security firmware on Simulation/ ASIC / FPGA platforms.
- Investigate security‑related firmware issues, perform root‑cause analysis, and drive fixes to closure.
- Support security validation, vulnerability testing, and certification or audit activities as required.
- Participate in secure development lifecycle activities, including threat modeling, security design reviews, and secure code reviews.
Benefits
- paid vacation time
- paid sick leave
- medical/dental/vision insurance
- life, accident and disability insurance
- tax-advantaged flexible spending and health savings accounts
- employee assistance program
- other voluntary benefit programs such as supplemental life and AD&D, legal plan, pet insurance, critical illness, accident and hospital indemnity
- tuition reimbursement
- transit
- the Applause Program
- employee stock purchase plan
- Sandisk's Savings 401(k) Plan
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Entry Level
