Embedded Product Security Architect

About The Position

Requirements

• Master/PhD degree in electrical engineering, computer science, or a related field, preferably with a specialization in embedded security (HW and/or SW)
• 10+ years of experience in embedded product security.
• Expert understanding of practical modern cryptography
• Proficient in security protocols, cryptography, authentication, attestation, authorization, secure boot, secure communication, digital signatures, certificates and post-quantum cryptography.
• Solid understanding of creating and validating threat models.
• Experience providing technical leadership and mentoring to other architects and/or development teams.

Nice To Haves

• Experience in driving FIPS, Common Criteria certification is an asset.
• Knowledge of data storage controllers' architectures is strongly preferred.

Responsibilities

• Interface with ecosystem, product security assurance (PSA) and product teams to gather security requirements from customers, regulatory, compliance, risk, and industry trends.
• Define the roadmap for security architecture for Flash products, including firmware and hardware, and secure manufacturing infrastructure.
• Drive threat modeling and reference embedded security architectures for product lines and drive BU wide adoption.
• Architect interactions between various system components and peripherals.
• Contribute to requirements and strategy for verification and validation of security features.
• Lead internal security reviews of developed products (HW and/or embedded SW), and guide external evaluations and compliance activities.
• Collaborate with multi-functional teams, including hardware design, firmware development, and product security assurance, to ensure that security requirements are incorporated into product design and development processes.
• Follow and promote a secure design mindset from conception to productization across multiple projects and product lines.
• Keep abreast of emerging industry security standards and best practices to guide the team to raise the bar on security.

Benefits

• You will be eligible to participate in Sandisk's Short-Term Incentive (STI) Plan, which provides incentive awards based on Company and individual performance.
• Depending on your role and your performance, you may be eligible to participate in our annual Long-Term Incentive (LTI) program, which consists of restricted stock units (RSUs) or cash equivalents, pursuant to the terms of the LTI plan.
• RSU awards are also available to eligible new hires, subject to Sandisk's Standard Terms and Conditions for Restricted Stock Unit Awards.
• We offer a comprehensive package of benefits including paid vacation time; paid sick leave; medical/dental/vision insurance; life, accident and disability insurance; tax-advantaged flexible spending and health savings accounts; employee assistance program; other voluntary benefit programs such as supplemental life and AD&D, legal plan, pet insurance, critical illness, accident and hospital indemnity; tuition reimbursement; transit; the Applause Program, employee stock purchase plan, and the Sandisk's Savings 401(k) Plan.