Senior Software & Security Architect- Embedded Cybersecurity Platform [USA - Remote]

AURA TECHNOLOGIES LLC.

9d•Remote

About The Position

AURA TECHNOLOGIES, LLC (AURA) is an advanced R&D company creating game-changing innovations for the US Department of Defense and the private sector. We are seeking a dedicated security architect to lead the implementation of a new embedded cybersecurity platform. This is a greenfield implementation where you will be responsible for writing the most security-sensitive components of the system from the ground up. These components include cryptographic key management services with hardware-rooted trust, certificate lifecycle management for offline and network-constrained environments, secure boot chain and platform integrity verification, OS-level hardening and mandatory access control configuration, and integration with hardware security elements and platform trust anchors. You will work directly with the Chief Architect and will be instrumental in building out the engineering team, helping recruit, mentor, and establish technical practices for developers.

Requirements

Embedded Linux: Deep, hands-on experience with custom embedded Linux systems (kernel configuration, initramfs, systemd, disk encryption, mandatory access controls like SELinux or AppArmor) sufficient to architect secure system designs, define implementation standards, and provide authoritative technical guidance.
TPM 2.0 and hardware root of trust: Working experience with TPM-based security (secure boot, measured boot, platform integrity, key sealing, attestation). Understanding of TPM 2.0 architecture and practical use.
Air-gapped and OT environments: Experience designing or deploying systems in disconnected, high-assurance, or industrial control environments, understanding constraints of operating without cloud connectivity.
PKI and X.509: Substantive experience with public key infrastructure (certificate chains, validation, revocation, certificate profiles).
Systems programming: Strong proficiency in C or C++ for systems-level work, comfortable reading kernel code, debugging with strace and gdb, and reasoning about memory safety, concurrency, and process isolation.
US Citizenship and ability to pass a background investigation.

Nice To Haves

Rust: Production experience writing Rust for systems or embedded targets.
Cryptographic engineering: Practical experience with cryptographic libraries (OpenSSL, tpm2-tss, PKCS#11), secure protocol implementation, or hardware security module integration.
OT security standards: Familiarity with security standards applicable to industrial and critical infrastructure environments (e.g., IEC 62443, NIST 800-82, or equivalent).

Responsibilities

Lead the implementation of a new embedded cybersecurity platform.
Translate detailed security specifications into implementation-level designs and working code for a hardened Intel/Linux appliance deployed in air-gapped OT environments.
Write security-sensitive components including cryptographic key management services with hardware-rooted trust.
Develop certificate lifecycle management for offline and network-constrained environments.
Implement secure boot chain and platform integrity verification.
Configure OS-level hardening and mandatory access control.
Integrate with hardware security elements and platform trust anchors.
Build out the engineering team, helping recruit, mentor, and establish technical practices for developers.