All roles

Hardware Device Security Engineer

SecurityRemoteFull-time

About the Role

As a Hardware Device Security Engineer at Naveera, you'll own the security of our IoT, edge, and in-vehicle hardware devices from boot to cloud connectivity. You will work across firmware, embedded Linux, device identity, secure communications, storage protection, update systems, and hardware attack surfaces to ensure our deployed devices are resilient in real-world environments. This role is ideal for someone who understands embedded systems deeply, can think like both a builder and an attacker, and knows how to turn device security requirements into practical engineering controls.

Responsibilities

  • Own security architecture for embedded and IoT devices across boot, firmware, OS, storage, networking, and device-to-cloud communication
  • Design and implement secure boot, device identity, key storage, certificate handling, firmware integrity checks, and trusted update mechanisms
  • Harden embedded Linux and firmware environments by reducing attack surface, locking down services, permissions, interfaces, and debug access
  • Assess and secure hardware and low-level interfaces such as UART, JTAG, SWD, USB, SPI, I2C, and other exposed device pathways
  • Build secure OTA update flows including signing, version control, rollback protection, and failure-safe recovery behavior
  • Evaluate threats to devices deployed in the field, including physical access, tampering, extraction, cloning, persistence, and unauthorized reconfiguration
  • Implement and review protections for data at rest and in transit, including secrets management, encrypted storage, TLS, and device authentication
  • Perform device threat modeling, security testing, vulnerability analysis, and risk assessment across hardware and firmware systems
  • Collaborate with firmware, electrical, backend, and cloud teams to define secure interfaces and deployment-ready security requirements
  • Support incident investigation, forensic analysis, and remediation for device or firmware-related security issues
  • Improve device observability through secure logging, auditability, integrity signals, tamper indicators, and diagnostic controls
  • Help define secure manufacturing, provisioning, and lifecycle processes for devices from bring-up through field deployment

Required Qualifications

  • 3+ years of experience in embedded security, IoT security, hardware security, firmware security, or related device-focused security roles
  • Strong understanding of embedded systems, firmware, and embedded Linux environments
  • Experience with secure boot, firmware signing, device identity, key provisioning, certificate management, and trusted update systems
  • Strong understanding of common hardware and device attack surfaces including exposed debug interfaces, insecure storage, weak boot flows, and peripheral abuse
  • Experience hardening embedded devices and reducing attack surface across services, interfaces, user access, and communications
  • Experience assessing or implementing security controls for device communications, authentication, and encrypted data storage
  • Comfort working close to hardware and low-level software, including logs, bootloaders, drivers, device trees, and board-level interfaces
  • Ability to perform threat modeling and practical risk analysis for connected devices in real-world deployment environments
  • Strong scripting or coding ability in Python, C, C++, Bash, or similar languages
  • Ability to work cross-functionally with hardware, firmware, backend, and cloud teams

Preferred Qualifications

  • Experience with secure elements, TPMs, HSM-backed provisioning, or hardware-rooted trust mechanisms
  • Experience with JTAG/UART lockout, fuse strategies, anti-tamper controls, and device cloning prevention
  • Experience with LTE, Wi-Fi, or other field connectivity security considerations on edge devices
  • Familiarity with Rockchip, Qualcomm, NXP, or similar embedded platforms and BSP-level security considerations
  • Experience securing camera, telematics, fleet, automotive, robotics, or industrial edge devices
  • Experience with penetration testing or red-team style assessment of embedded or IoT devices
  • Familiarity with secure manufacturing flows, factory provisioning, and device lifecycle management at scale
  • Experience in regulated or security-sensitive environments such as transportation, healthcare, automotive, or industrial systems

Apply for this role

Apply now