Principal, Product Security Engineer HW/FW at Sandisk

Bengaluru, karnataka, India -

Full Time

Start Date

Immediate

Expiry Date

05 Jun, 26

Salary

0.0

Posted On

07 Mar, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Hardware Security, Firmware Security, Product Security Assurance, Security Risk Assessments, Threat Modeling, Secure Development Practices, Architecture Evaluation, Security Controls, Cryptographic Protocols, Low Level Hardware-Software Interactions, FIPS 140, Real-Time Software Development, Embedded Systems Design, Application Security, Penetration Testing, Incident Response

Industry

Semiconductor Manufacturing

Description

Company Description Sandisk understands how people and businesses consume data and we relentlessly innovate to deliver solutions that enable today’s needs and tomorrow’s next big ideas. With a rich history of groundbreaking innovations in Flash and advanced memory technologies, our solutions have become the beating heart of the digital world we’re living in and that we have the power to shape. Sandisk meets people and businesses at the intersection of their aspirations and the moment, enabling them to keep moving and pushing possibility forward. We do this through the balance of our powerhouse manufacturing capabilities and our industry-leading portfolio of products that are recognized globally for innovation, performance and quality. Sandisk has two facilities recognized by the World Economic Forum as part of the Global Lighthouse Network for advanced 4IR innovations. These facilities were also recognized as Sustainability Lighthouses for breakthroughs in efficient operations. With our global reach, we ensure the global supply chain has access to the Flash memory it needs to keep our world moving forward. Job Description The Hardware/Firmware Product Security Engineer will be a member of the Product Security Assurance team specializing in security considerations for Client and Enterprise storage products (SSDs) that incorporate hardware and firmware components. This individual will provide crystal-clear technical direction and risk mitigation guidance for diverse engineering and business leaders at all levels. This person will also assist with evolving the Sandisk secure development practices to align with ever changing market, standard and regulatory requirements. During the product development process, this individual will advise the development team on secure development and evaluate the architecture with a security lens. The Product Security Engineer will lead security risk assessments, guide threat modeling activities, and participate in validation of security requirements at the component or system level. Our ideal teammate has experience architecting and developing hardware/firmware that meets the highest cybersecurity standards, is highly motivated and passionate about technology. This ideal candidate is eager to stay up to date with the latest industry trends and technologies and enjoys participating in industry consortiums. If this applies to you – join our collaborative team to develop together the next big thing in data! Qualifications Basic Qualifications (Required Skills & Experience) Bachelor’s degree or greater with focus in Computer Science, Engineering, or relevant field from an accredited college/university Design and engineering of security requirements and security controls for HW/FW (storage experience a plus!) Knowledge of cybersecurity standards and best practices Hardware & Firmware security architecture design and integration Knowledge of low level hardware-software interactions, such as storage in flash, RAM or cache Working understanding of security threats, security risk assessments, security threat modeling, security risk mitigation, and security incident reporting Experience working with cryptographic protocols/libraries Typical Minimum Experience Preferred (Desired Skills/Experience) 5-7 years of related experience preferred 3+ years of embedded hardware/software design and development Familiar with FIPS 140 Experience with two or more of the following: real-time software development, vehicle electronics and controls, embedded systems design, application security, penetration testing, incident response Experience with embedded software development is a plus Additional Information All your information will be kept confidential according to EEO guidelines. Job Type (exemption status): Exempt position - Please see related compensation & benefits details below Business Function: Systems Design Engineering Work Location: Bangalore Cosmos Office--LOC_WDT_Bangalore Cosmos Office

Responsibilities

This role involves providing clear technical direction and risk mitigation guidance regarding security considerations for Client and Enterprise storage products containing hardware and firmware components. The engineer will advise development teams on secure practices, evaluate architecture from a security perspective, lead risk assessments, and guide threat modeling activities.