Staff Security Firmware Test Developer

About The Position

Requirements

• Bachelor’s or Master’s degree in Computer Science, Electrical Engineering, or related field — or equivalent practical experience in firmware or embedded security.
• 5+ years of hands-on experience validating security features in firmware or embedded systems — specifically in NVMe SSDs, storage controllers, or similar hardware platforms.
• Proven experience validating at least 3 of the following: Secure Boot (UEFI/TPM/Bootloader) TCG OPAL (Self-Encrypting Drive) SPDM (Firmware Attestation) Caliptra 2.1 (or equivalent hardware root of trust) OCP NVMe Security Requirements TCG Storage Spec Requirements (upcoming or current)
• Strong experience building and maintaining automated test frameworks for firmware or hardware validation — with scripting (Python,Java, Bash, C) and CI/CD integration.
• Experience debugging low-level firmware/hardware issues — using tools like JTAG, logic analyzers, or firmware logs — with ability to trace failures across protocol layers.
• Working knowledge of NVMe protocol, PCIe, and storage security standards — with ability to read and implement test cases from specs.
• Experience working with FPGA or ASIC platforms — validating firmware behavior in pre-silicon or post-silicon environments.
• Strong ownership mindset — able to define test strategy, drive quality gates, and ensure security validation is not an afterthought, but built into the design.

Nice To Haves

• Experience with formal security certification processes (e.g., FIPS 140-3, Common Criteria, ISO 27001, or similar).
• Hands-on experience with Caliptra 2.1 or similar RISC-V-based hardware root of trust architectures.
• Experience with SPDM or similar attestation protocols in production firmware.
• Contributions to open-source security test frameworks or industry standards (e.g., TCG, OCP, NVM Express).
• Experience with security validation in cloud-scale storage environments (e.g., hyperscale data centers, enterprise storage arrays).
• Strong communication skills — able to present technical findings to engineering leadership and security compliance teams.

Responsibilities

• Lead end-to-end security validation for enterprise NVMe SSD firmware — from architecture review to production sign-off — ensuring compliance with Secure Boot, TCG OPAL, SPDM Firmware Attestation, Caliptra 2.1, and OCP NVMe Security Requirements.
• Design, build, and maintain automated test frameworks that validate security features across FPGA and ASIC platforms, enabling rapid regression and continuous integration.
• Debug and root-cause complex security failures — working closely with firmware, hardware, and security architects to resolve issues at the protocol or implementation level.
• Define and execute test strategies that prove “secure by design” — not just functional correctness, but cryptographic integrity, attestation, and tamper resistance.
• Own test coverage and quality gates for security-critical features — ensuring no release ships without passing validation against defined security specs.
• Stay ahead of evolving standards — actively track and implement upcoming TCG Storage Spec Requirements and other industry security mandates.
• Collaborate cross-functionally with firmware, hardware, and security teams — translating specs into testable requirements and driving alignment on security validation outcomes.

Benefits

• medical
• dental
• vision
• life insurance
• company 401(k) match
• cafeteria
• onsite gym