Senior Defensive Security Engineer – Embedded Systems

About The Position

Requirements

• High School diploma or GED plus 5 years of experience in cybersecurity, with at least 2 years of experience in defensive security roles focused on Linux based systems (e.g., penetration testing, red teaming, vulnerability assessment).
• Expertise in Linux network security, secure coding, or embedded systems security.
• Coding/scripting in embedded C/C++ for Linux environments.
• Familiarity with Linux security tools like auditd, Lynis, or vulnerability scanners.
• Security Clearance: Active U.S. Government SECRET clearance or the ability to obtain one within 15 months of hire.
• Must be a U.S. Citizen due to clients under U.S. government contracts.
• All employment is contingent upon the successful clearance of a background check and drug test.

Nice To Haves

• Bachelor or Master’s degree in Cybersecurity, Computer Science, Information Technology, or related field.
• One or more of the following certifications: CISSP, CISM, GIAC Security Expert (GSE), CompTIA Security+, or Linux-specific (e.g., LFCS, RHCE).
• Hands-on experience implementing Linux security controls, such as SELinux, AppArmor, or iptables, and conducting security assessments.
• Proficiency in Linux security frameworks, such as CIS Benchmarks, NIST SP 800-53, or STIGs.
• Broad experience with Linux secure development lifecycle (SDL) practices.
• Knowledge of Linux threat intelligence and threat modeling.
• Familiarity with Linux container security (e.g., Docker, Podman) and cloud environments.
• Strong communication skills to explain Linux security concepts to technical and non-technical audiences.
• Collaborative teamwork with cross-functional groups.
• Experience securing resource-constrained Linux-based embedded systems.
• Understanding of real-time Linux systems and their security implications.
• Knowledge of Linux hardware security integration, such as TPM or Secure Enclave.
• Demonstrated experience designing secure Linux communication systems with encryption, authentication, and key management.
• Familiarity with mobile ad-hoc networking security on Linux platforms.

Responsibilities

• Design and implement Linux-based security architectures for embedded systems, focusing on secure boot, and kernel hardening.
• Develop and enforce Linux security features, including iptables, netfilter, and auditd for intrusion detection and prevention.
• Conduct security assessments and audits of Linux-based embedded systems to identify and mitigate vulnerabilities.
• Integrate Linux security best practices into the development lifecycle (DevSecOps), emphasizing secure coding and configuration management.
• Manage vulnerabilities in Linux-based embedded systems, including timely patching and kernel updates.
• Train teams on Linux security practices, including privilege management, file system permissions, and container security.
• Participate in incident response planning and execution for Linux-based embedded systems.
• Implement Linux-native encryption and authentication mechanisms (e.g., dm-crypt, OpenSSL, PAM) for secure communications.
• Perform other related duties of which the above are representative.