Senior Hardware Security Engineer
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Senior Hardware Security Engineer for Lime focused on safeguarding hardware and firmware security. Collaborating within a remote product security team on cutting-edge security solutions and methodologies.
Responsibilities:
- Security Architecture & Design: Contribute to hardware security architecture reviews for product platforms, providing security input on secure boot chains, hardware roots of trust, trusted execution environments (TEEs), and cryptographic implementations. Evaluate silicon and SoC security properties through vendor assessment, datasheet review, black-box testing, and security characterization of off-the-shelf and custom components. Research and evaluate emerging hardware security technologies (e.g., confidential computing, post-quantum cryptographic hardware, hardware-backed attestation) and provide recommendations to the team.
- Threat Modeling & Risk Assessment: Conduct threat modeling exercises for hardware and firmware components, identifying attack surfaces across the product stack. Perform security risk assessments for new and existing hardware designs, quantifying risk and recommending mitigations with clear priority and business context. Communicate hardware security tradeoffs clearly to engineering peers and product stakeholders.
- Security Assessment & Testing: Perform hands-on security assessments of hardware platforms, including side-channel analysis, fault injection testing, firmware reverse engineering, and debug interface evaluation. Contribute to building and maintaining a hardware security testing methodology and lab environment, including tooling for automated and repeatable assessments. Participate in vulnerability management for hardware and firmware components, including coordinating disclosure, remediation tracking, and validation of fixes.
- Firmware & Platform Security: Develop firmware hardening recommendations and work with firmware engineering teams to implement secure boot, firmware update integrity, tamper detection and runtime protection mechanisms across product platforms. Contribute to security standards for embedded systems, microcontrollers, and platform firmware across the product portfolio. Work with platform teams to review hardware-software interfaces (e.g., UEFI, BMC, TPM interactions) for security concerns.
- Incident Response & Forensics: Participate in incident response efforts for hardware and firmware security incidents, contributing to investigation, root-cause analysis, and corrective action to prevent recurrence.
- Tooling & Automation: Develop and maintain automated security tooling for hardware and firmware analysis, vulnerability scanning, and compliance validation. Contribute to defining security gates within CI/CD and build pipelines for firmware, working with DevOps and firmware teams to support automated enforcement before production release.
- Standards, Policy & Compliance: Contribute to hardware security standards, policies, and procedures that align with industry frameworks (e.g., NIST SP 800-193, Common Criteria, FIPS 140, IEC 62443). Support product security certifications and compliance efforts where hardware security attestation is required. Stay current with the evolving hardware threat landscape, supply chain security concerns, and regulatory requirements.
- Collaboration & Mentorship: Serve as a subject matter expert on hardware security within the product security team, providing technical guidance to engineering peers. Share knowledge and help develop junior team members' hardware security skills through assessment reviews and design reviews. Help drive adoption of hardware security best practices within your project scope through clear documentation and hands-on support.
- Stay Ahead of Threats: Continuously research and evaluate emerging hardware security threats, technologies, and best practices to recommend new approaches and solutions.
- Travel: This role requires up to 10% of travel within EMEA and North America
Requirements:
- Experience: 5+ years of experience in a dedicated hardware or firmware security engineering role, with a strong focus on embedded systems, platform security, or product security.
- Technical Depth: Demonstrated expertise across hardware security domains, with strong proficiency in at least one or two specialized sub-disciplines:
- Firmware security: Secure boot, trusted execution environments (TEEs), firmware integrity, secure update mechanisms
- Platform security: Hardware root of trust, TPM/secure enclaves, cryptographic implementations, SoC security properties
- Physical attack assessment: Fault injection, side-channel analysis, hardware reverse engineering, debug interface security
- Embedded systems security: Microcontroller hardening, RTOS security, hardware-software interface security
- Working familiarity across other hardware security domains and eagerness to grow breadth over time
- Hands-On Skills: Practical experience with hardware security testing methodologies, tools, and lab equipment. Ability to perform black-box security characterization, vulnerability assessment, and security validation of hardware components and firmware.
- Problem-Solver: Excellent analytical and problem-solving skills with a proven ability to troubleshoot complex hardware security issues and propose effective, practical solutions that balance security with product requirements.
- Communication: Strong written and verbal communication skills, with the ability to articulate complex technical hardware security concepts to both technical and non-technical audiences, including engineering peers and product stakeholders.
- Team Player: Ability to work independently and as part of a lean, highly collaborative team, comfortable with remote work environments and cross-functional collaboration with firmware, hardware, and platform engineering teams.
- Startup Mindset: Experience or comfort working in a dynamic, fast-paced startup or high-growth environment where you'll need to build processes and programs from the ground up.
- Continuous Learner: Passion for hardware security and a commitment to staying current with the latest hardware security trends, attack techniques, and defensive technologies.
- Education & Certifications: Bachelor's degree in Computer Engineering, Electrical Engineering, Computer Science, Cybersecurity, or a related field is preferred but not required. Relevant industry certifications such as GIAC Reverse Engineering Malware (GREM), Offensive Security Certified Professional (OSCP), or hardware-focused security certifications are a plus.
Benefits:
- Comprehensive Health & Wellness: A choice of medical, dental, and vision plans. We also provide company-paid life and disability insurance and company-funded mental health benefits.
- Financial & Retirement Planning: 401(k) plan with both pre-tax and Roth options, and access to a Health Savings Account (HSA) with a monthly company contribution.
- Family & Fertility Support: Paid parental leave for birthing and non-birthing parents, plus fertility and family-forming benefits.
- Paid Time Off: Unlimited vacation, paid leaves, and 10 company holidays.
- Unique Lime Perks: Complimentary use of Lime vehicles in participating cities, a monthly phone allowance, dedicated learning and development days, and access to perks including One Medical, Wellhub, and Headspace.
Similar Jobs
Senior Hardware Security Engineer
Senior Hardware Security Engineer at Lime focusing on developing security solutions for hardware and firmware products. Contributing to collaboration across teams while ensuring hardware security standards are met.
Senior Hardware Security Engineer
Senior Hardware Security Engineer at Lime focusing on hardware security architecture and assessments. Collaborate with teams on product security across embedded systems and firmware.
Security Engineer
Security Engineer safeguarding the innovative GPU cloud platform at Runpod. Ensuring security and isolation of customer workloads in a remote-first company.
Technical Lead – Application Security
Technical Lead in Application Security at CENSUS, managing security engineers while delivering top-tier cybersecurity services. Involved in technical leadership and addressing application security challenges.
Senior Cloud Security Architect – UK Nationals Only
Senior Cloud Security Architect at CENSUS leveraging cloud security expertise to develop architectures and conduct risk assessments. Joining a mission-driven team to enhance cybersecurity for diverse clients.
CompTIA Security+ Certified
Tutor providing online support to CompTIA Security+ students through virtual instruction. Engage with students and foster a fun, interactive learning environment.
Engenheiro de Segurança
Technical reference in perimeter security architecture and secure application exposure for critical environments. Leading initiatives with Firewalls and API protection while ensuring high availability.
Head of Security – Infrastructure
Head of Security & Infrastructure for ARIVE overseeing cybersecurity and cloud operations. Leading security initiatives and managing distributed teams in U.S. and India.
Director of Cybersecurity – OT
Director of Cybersecurity at Radian Generation leading security across OT environments and managed services. Overseeing MSS and SOC operations while aligning compliance and improving incident response.
Lead Technical Consultant, Cybersecurity Defense
Lead Technical Consultant managing Cyber Defense projects across Germany, Austria, and Switzerland. Responsible for technical implementation and innovation in Cyber Defense architectures.
Staff Security Product Engineer
Security Engineer building AI-driven security products for application security and operations. Collaborating with product teams to design systems that act on security signals and workflows.
Cybersecurity Risk Engineer
Designing and maintaining secure cloud infrastructures as a Cybersecurity Engineer at Ensemble Health Partners. Focused on enhancing security controls and analyzing potential vulnerabilities in cloud structures.
Engineer, Cybersecurity Risk
Engineer II, Cybersecurity designing and maintaining secure infrastructures for Ensemble Health Partners, while analyzing cloud structures for enhanced security methods.
Senior AI Cybersecurity Engineer
AI Cybersecurity Engineer designing and executing cybersecurity-focused AI governance programs. Collaborating with cross-functional teams on secure AI solutions and policies while ensuring compliance and risk management.
Technical Writer, Cybersecurity
Technical Writer ensuring clarity and consistency in federal cybersecurity documentation. Edit and format various technical documents while collaborating with analysts and SMEs.
Cybersecurity Program Manager
Cybersecurity Program Manager overseeing contract performance and managing cybersecurity teams for federal clients in a remote capacity. Ensuring quality, audit-ready security assessment services are delivered.
Information Security Engineer
Information Security Engineer assessing web technologies and coordinating remediation at G-P. Collaborating with teams to enhance application security and develop automation tools.
Cybersecurity Compliance Lead
Cybersecurity Compliance Lead at Fresche Solutions responsible for leading the cybersecurity compliance program and mentoring team members. Overseeing audits, developing strategies, and fostering a security culture.
Senior Security Architect
XAAS Consultant advising clients on IT Security, focusing on infrastructure, cloud, and application security. Involves hands-on security assessments and developing security architectures.
Security Specialist – Cryptography
Security Specialist focusing on Cryptography for remote projects at The Whiteam Consulting. Collaborating with technology consultants to optimize business profitability.