Firmware Security Engineer

OnLogic

Location: South Burlington, VT

Type: Full Time

Education: Bachelor's Degree

Experience: 5 - 10 Years

As a Firmware Security Engineer at OnLogic, you will be part of a team that develops and protects industrial computing products. In this role, you lead the vulnerability management firmware/software coding tasks for the various microcontroller (MCU) applications across our own products, including motherboards and expansion cards. You will also collaborate with external partners performing BIOS creation for our own computer motherboards. You will engage in projects from vulnerability identification, risk mitigation and validation testing. We are growing at an incredible pace and we’re looking for a dynamic, and dedicated team member to help us continue to Make It Possible. This full-time position will be located on site in South Burlington, VT or Cary, NC.

 

On an average day, you’ll…

  • Work with the security team to identify and mitigate firmware vulnerabilities.
  • Perform firmware development for vulnerability mitigation.
  • Work with the firmware development team to define BIOS specifications.
  • Collaborate with external parties in the vulnerability management lifecycle.
  • Validate function of firmware & BIOS on prototypes.
  • Actively participate in continuous improvement of the company’s development processes.
  • Support vulnerability lifecycle management.
  • Support product security and customer communications on related issues.

 

The team you will be joining: 

Our IT team touches every aspect of our business and each of our day to day lives here at OnLogic. Made up of software developers, infrastructure and security experts, systems and network engineers and business technology professionals, our IT team is constantly working to improve our internal systems to make our lives easier, while optimizing our website to do the same for our customers. From the technology we use to do our jobs, to the infrastructure that supports the way we build, test and ship our products, our IT team keeps our business running smoothly.

Learn more about Life at OnLogic.

Requirements

  • You have a bachelor’s degree or higher in Computer Science, Cybersecurity, Software or Electrical Engineering.
  • 5+ years of Firmware security management experience, preferably in the industrial PC industry.
  • Proven experience in embedded systems security, with a focus on threat modeling, risk assessment, and security implementation.
  • Experience collaborating across multiple engineering disciplines in a leadership capacity, such as mechanical, electrical, firmware and security.
  • Experience in embedded firmware and debugging using JTAG based debuggers & logical analyzers.
  • Strong understanding of vulnerability management.
  • Collaborate with teammates on the Cybersecurity, Component Engineering, and other Engineering teams to implement secure and compliant systems.
  • Contribute to the Security Development Lifecycle of the Firmware by supporting its development at different stages, including design, threat analysis, implementation, validation, vulnerability testing, certification, and audit.
  • Strong background in software with C and Assembly.
  • Experience with version control systems (like Git) and the software development process.
  • Understanding of PC hardware architectures, BIOS, and Linux.
  • Extensive experience with microcontrollers, their architecture and operation.
  • Familiarity with common security standards and certifications (e.g., Common Criteria, MITRE. FIPS, ISO 27001).
  • Ability to work in the U.S. without visa sponsorship.

 

Who we’re looking for:

  • You understand what leadership muscles you need to flex to effectively lead and inspire teams.
  • You are a clear communicator; with examples of setting expectations and holding teams accountable to the outcomes.
  • You’ve demonstrative ability to build and develop a high performing team.
  • You’re a problem solver with creative ideas to support our shared future growth and success.
  • A self starter with the ability to work in a fast paced environment, thinking independently and acting proactively.
  • Effective communicator, delivering critical feedback in a constructive way while working collaboratively cross-functionally.
  • Technically adept and embraces innovation and automation with a mind toward continuous improvement.

© 2024 Vermont Technology Alliance

Site by Scout Digital