Security Software Designer

Role Overview:

As a Security Software Designer, you will be responsible for designing, developing, and implementing software solutions that protect systems and networks from cyber threats. You will work closely with cross-functional teams to ensure that security is integrated into every phase of the software development lifecycle.

Key Responsibilities:

• Carry out security assessments complying with Company requirements on embedded products using threat modeling, threat & risk analysis, and vulnerability analysis.
• Develop the security architecture and design as needed to mitigate or remediate threats and obtain final cybersecurity approval for release.
• Design and develop secure embedded software applications.
• Analyze and propose mitigation for security scan results, including SAST, DAST, SCA, and FST requirements.
• Collaborate with development teams of different product lines to propose and integrate secure practices into the product design lifecycle.

Qualifications Required:

• Bachelor's/Master's degree in Computer Science, Electronics & Communications, or Information Systems.
• Overall working experience of 5-8 years in embedded systems with a focus on cybersecurity.
• Proven experience in secure software design and development with security practices.
• Strong understanding of security protocols, cryptography, and secure coding techniques.
• Excellent problem-solving skills and attention to detail.
• Technical knowledge of secure embedded system design and implementation in bare metal and Embedded Linux environments Secure Boot, Serial, USB, Ethernet, and IoT.
• Hands-on experience with programming languages such as C, C++, and Python.
• Familiarity with secure design patterns & principles and standards like IEC62443, NIST 800, OWASP, and CWE.
• Experience with network protocols, network infrastructure, and services in Embedded Linux environments, including firewalls, routers, switches, VPN, HTTP, SSH, FTP, TFTP, SNMP, DHCP, MQTT, MQTTS, and NTP.
• Understanding of cryptographic concepts such as storage of passwords, accounts, keys, certificates use, crypto key management, key generation, and key usage.

(Note: Additional details of the company are not provided in the job description.) Role Overview:

As a Security Software Designer, you will be responsible for designing, developing, and implementing software solutions that protect systems and networks from cyber threats. You will work closely with cross-functional teams to ensure that security is integrated into every phase of the software development lifecycle.

Key Responsibilities:

• Carry out security assessments complying with Company requirements on embedded products using threat modeling, threat & risk analysis, and vulnerability analysis.
• Develop the security architecture and design as needed to mitigate or remediate threats and obtain final cybersecurity approval for release.
• Design and develop secure embedded software applications.
• Analyze and propose mitigation for security scan results, including SAST, DAST, SCA, and FST requirements.
• Collaborate with development teams of different product lines to propose and integrate secure practices into the product design lifecycle.

Qualifications Required:

• Bachelor's/Master's degree in Computer Science, Electronics & Communications, or Information Systems.
• Overall working experience of 5-8 years in embedded systems with a focus on cybersecurity.
• Proven experience in secure software design and development with security practices.
• Strong understanding of security protocols, cryptography, and secure coding techniques.
• Excellent problem-solving skills and attention to detail.
• Technical knowledge of secure embedded system design and implementation in bare metal and Embedded Linux environments Secure Boot, Serial, USB, Ethernet, and IoT.
• Hands-on experience with programming languages such as C, C++, and Python.
• Familiarity with secure design patterns & principles and standards like IEC62443, NIST 800, OWASP, and CWE.
• Experience with network protocols, network infrastructure, and services in Embedded Linux environments, including firewalls, routers, switches, VPN, HTTP, SSH, FTP, TFTP, SNMP, DHCP, MQTT, MQTTS, and NTP.
• Understanding of cryptographic concepts such as storage of passwords, accounts, keys, certificates use, crypto key management, key generation, and key usage.

(Note: Additional details of the company are not provided in the job description.)