Principal, Product Security Engineer HW/FW

Company Description

Sandisk understands how people and businesses consume data and we relentlessly innovate to deliver solutions that enable today’s needs and tomorrow’s next big ideas. With a rich history of groundbreaking innovations in Flash and advanced memory technologies, our solutions have become the beating heart of the digital world we’re living in and that we have the power to shape.

Sandisk meets people and businesses at the intersection of their aspirations and the moment, enabling them to keep moving and pushing possibility forward. We do this through the balance of our powerhouse manufacturing capabilities and our industry-leading portfolio of products that are recognized globally for innovation, performance and quality.

Sandisk has two facilities recognized by the World Economic Forum as part of the Global Lighthouse Network for advanced 4IR innovations. These facilities were also recognized as Sustainability Lighthouses for breakthroughs in efficient operations. With our global reach, we ensure the global supply chain has access to the Flash memory it needs to keep our world moving forward.

Job Description

The Hardware/Firmware Product Security Engineer will be a member of the Product Security Assurance team specializing in security considerations for Client and Enterprise storage products (SSDs) that incorporate hardware and firmware components.  This individual will provide crystal-clear technical direction and risk mitigation guidance for diverse engineering and business leaders at all levels. This person will also assist with evolving the Sandisk secure development practices to align with ever changing market, standard and regulatory requirements.   During the product development process, this individual will advise the development team on secure development and evaluate the architecture with a security lens.  The Product Security Engineer will lead security risk assessments, guide threat modeling activities, and participate in validation of security requirements at the component or system level. Our ideal teammate has experience architecting and developing hardware/firmware that meets the highest cybersecurity standards, is highly motivated and passionate about technology.  This ideal candidate is eager to stay up to date with the latest industry trends and technologies and enjoys participating in industry consortiums. If this applies to you – join our collaborative team to develop together the next big thing in data!

Qualifications

Basic Qualifications (Required Skills & Experience) 
 

• Bachelor’s degree or greater with focus in Computer Science, Engineering, or relevant field from an accredited college/university 
• Design and engineering of security requirements and security controls for HW/FW (storage experience a plus!) 
• Knowledge of cybersecurity standards and best practices
• Hardware & Firmware security architecture design and integration 
• Knowledge of low level hardware-software interactions, such as storage in flash, RAM or cache
• Working understanding of security threats, security risk assessments, security threat modeling, security risk mitigation, and security incident reporting
• Experience working with cryptographic protocols/libraries 

Typical Minimum Experience Preferred (Desired Skills/Experience) 
 

• 5-7 years of related experience preferred 
• 3+ years of embedded hardware/software design and development 
• Familiar with FIPS 140
• Experience with two or more of the following: real-time software development, vehicle electronics and controls, embedded systems design, application security, penetration testing, incident response 
• Experience with embedded software development is a plus

Additional Information

All your information will be kept confidential according to EEO guidelines.