Embedded Security Engineer

Position: Senior Embedded Security Engineer | Automotive & Connected Systems

Location: Ho Chi Minh City

Type: Full-time

ABOUT THE CLIENT

A global technology is looking for a Senior Embedded Security Engineers to join the team. This role will work on production automotive platforms including IVI and ADAS systems running Android Automotive, Linux, and QNX on SoCs from Qualcomm, Renesas, and TI.

ABOUT THE ROLE

You will own security across the full embedded stack: threat modeling, architecture reviews, secure boot, TEE integration, hardening, and validation. Backgrounds from automotive, IoT, mobile, or consumer electronics are all in scope.

KEY RESPONSIBILITES

1. Security Architecture & Engineering
Design and implement end-to-end security capabilities for embedded platforms, including Secure Boot, Trusted Execution Environments (TEE), secure storage, secure update mechanisms, and secure communications.
Contribute to the definition and evolution of security architectures for embedded and connected systems.

2. Threat Modeling & Reviews
Conduct security architecture reviews and perform threat modeling across platforms such as infotainment, ADAS, IoT, and other connected devices.
Identify potential risks, define mitigation strategies, and drive early-stage security improvements throughout the development lifecycle.

3. Security Implementation & Hardening
Implement system hardening measures across Linux, Android, and QNX environments.
Perform secure code reviews and partner with development teams to remediate vulnerabilities.
Support the integration of access control and system hardening frameworks (e.g., SELinux, AppArmor).

4. Testing & Validation
Execute comprehensive security testing and validation, including static and dynamic analysis, fuzz testing, and penetration testing.
Validate security features on physical hardware and production-like environments.

5. Process & Compliance
Define, develop, and maintain security requirements and Security Engineering Processes (SEP).
Ensure alignment with relevant security standards, regulations, and industry best practices.

REQUIREMENT

• 7+ years total experience; 2-5 years minimum in embedded software, system software, or security engineering.
• Hands-on Linux and/or Android at BSP or system level. Working knowledge of cryptography, secure communication protocols, and security testing fundamentals.
• Practical experience with secure boot, OTA, secure storage, or inter-component trust mechanisms.

NICE TO HAVE

• SoC-level experience (Qualcomm, Renesas RCAR, TI); QNX development; certifications (CISSP, OSCP, SANS GIAC, CEH); TrustZone/OP-TEE/HSM; SELinux/AppArmor; fuzzing and penetration testing.