OBS! Ansökningsperioden för denna annonsen har
passerat.
Arbetsbeskrivning
Job description
Company Overview
Sigma Connectivity is a design house. We are a team of 700 talented engineers and our main office is located in Lund, Southern Sweden. Primarily we run in-house projects focusing on connected products within consumer electronics and IoT devices and we have the capability in terms of people, expertise and labs to realize the most demanding products on the market. We have offices in Sweden, US, Poland, Germany and Denmark. As a fast-growing company we are constantly looking for open-minded, talented people who want to take part in our journey. The Sigma Connectivity company culture is about sharing experiences and knowledge and with a Nordic work culture we strive for work-life balance and taking care of people. Within Sigma Connectivity you will never work alone.
Job Overview
We are seeking an embedded security engineer in Lund!
The role requires experience in embedded Android system architecture from a security perspective as well as implementation. You will work in close collaboration with developers, software and hardware architects as well as customer. The work consists of defining and implementing the security aspect of our projects.
We interview continuously for this position as we have multiple positions to fill!
Role and Responsibility
With a focus on hardware devices entire technology stack up to the edge of the cloud.
Stay up to date on the current threat level
Understand and assess various kinds of threats.
Carry out threat and risk analyses.
Systematically develop security concepts and protocols.
Practically implement security solutions.
Assess the efficiency of the security solutions developed
Basic qualifications
To succeed in this role you must have:
Capability of translating security issues at the technical level.
Experience in Android security features (including factory reset protection, HW crypto acceleration, keystore)
Experience in secure and verified boot (including SFS anti-rollback, integrity verification with dm-verity and kernel modules signing)
Advanced skills in one or several of: embedded C, C++, Java, Kotlin
Knowledge within secure provisioning
Development tools like Git, Gerrit, Jenkins, Coverity
A good theoretical knowledge of cryptography
Experience in mitigating and planning for OWASP top 10
Preferred additional skills, personal traits, experience
Preferred Qualifications
Knowledgeable about the upcomming Cyber Security part of CE/RED and ETSI EN 303 645
SELinux/SEAndroid
Secure Payment with QPay/NFC and Google Pay
Full disk encryption (FDE) or file-based encryption (FBE)
Fuzzing embedded systems
Able to implement cryptographic mechanisms using dedicated software libraries (e.g. : Mocana, mbedTLS and wolfSSL)
Identify and integrate security solutions into products, for example PKI/HSM architectures
Use secure elements offered by different suppliers of electronic components (e.g. : Infineon, STMicroelectronics or NXP) and integrate them with embedded cryptographic libraries.
Experience with automated (re)validation with CTS and GTS
Qualcomm TEE
Strong documentation and writing skills
Technologies: ASLR, NX, ProPolice, safe_iop, OpenBSD dlmalloc/calloc, and Linux mmap_min_addr
Personal characteristics
Team player
Proactiveness in collaborating and execution.
Willingness to learn new methods / tools / processes
Strong problem solving and critical thinking skills
Strong passion for creativity and solving cutting edge industry problems
We offer
An international working environment
Opportunity to develop cutting edge technology for market leaders and some of the most demanding customers
Extensive hardware and software knowledge and all the equipment to build and test complete products and solutions
Working on a project basis, promoting competence development
At occasions, working on-site with the customer
Being part of a wonderful and experienced team where you will never work alone.
The Sigma Connectivity company culture.