
Software Security Architect
Posted 3 days ago

Posted 3 days ago
This is a fully remote position, open to applicants in California, +4 more states.
• Design, evaluate, and assess secure software architectures for centralized automotive computing systems.
• Conduct threat modeling and security architecture evaluations for multi-tenant, mixed-criticality automotive software solutions.
• Collaborate with safety architects to analyze the relationship between security measures, safety protocols, failure modes, and recovery processes.
• Establish OS security policies, access control, isolation, and privilege models for Android, Linux, QNX, and virtualized environments.
• Develop security systems that ensure the integrity and availability of safety-critical vehicle software.
• Assess security trade-offs relating to performance, latency, memory usage, boot time, diagnosability, and functional safety requirements.
• Advise engineering teams on secure build processes, secure coding practices, threat mitigation strategies, and security review methodologies.
• Work collaboratively with software, hardware, safety, security, and systems teams to comply with NVIDIA and automotive industry standards.
• Over 12 years of experience in secure and safe embedded software development.
• Bachelor's degree or equivalent qualifications.
• Strong expertise in embedded systems security, platform security, and OS security applied to high-performance computing (HPC) environments.
• Comprehensive understanding of software safety principles and their interaction with secure development principles in mixed-criticality contexts.
• Proven experience in implementing security frameworks to address integrity and availability challenges.
• Familiarity with threat modeling, applied cryptography, common attack vectors, and conducting security reviews.
• Knowledge of ARM-based SoC architecture, including caches, buses, memory controllers, debugging, interrupt handling, and device access control.
• Understanding of OS architecture, kernel concepts, drivers, process isolation, memory protection, and networking protocols such as Ethernet, TCP/IP, and TLS.
• Experience with virtualization technologies and developing secure multi-tenant embedded platforms.
• Equity and benefits.
• Comprehensive benefits package.
CrowdStrike
ESA - Electronic Security Association
DKB Code Factory GmbH
Aledade, Inc.
Get handpicked remote jobs straight to your inbox weekly.