Senior Embedded Linux Software engineer (security focused)

Overview

We seek a highly skilled and technically capable Senior Embedded Linux Software engineer (security focused) to join the Linaro Professional Services team. Applicants should have a proven record of developing and delivering system software for production-grade consumer electronics and industrial IoT devices. As an experienced senior developer, you will cover the role of a technical leader in customer projects, developing end-to-end operating system (Yocto/OpenEmbedded/Debian) support, bringing up BSPs for devices, and serving as firmware, kernel and OS, embedded security technical expert on the project.

A successful candidate will develop, support, maintain, and document software functionality; identify and evaluate new technologies for implementation; analyze code to find causes of errors and revise programs as needed; participate in software design and analyze user needs to determine technical requirements; and consult with the end user to prototype, refine, test, and debug programs to meet needs. Requires expert skill set, proficiency, and a proven record of open-source contributions.

Main Duties

• Design and development of custom operating system solutions based on Yocto, Android, and/or Debian platforms.
• Enable Linux support for various hardware blocks
• Strong knowledge of ARM SoCs and hardware security features, with particular emphasis on NXP i.MX SoCs.
• Bring up hardware platforms from scratch.
• Threat model and security hardening of embedded systems from firmware to OS.
• Enable and test end-to-end use cases on new platforms.
• Provide technical support and implement bug fixes.
• Provide technical leadership in your areas of expertise for the project. Influence others, including through engineering best practices and/or specialist knowledge.
• Drive forward significant features or improvements and increase the quality of the product.
• Develop quality functionality on schedule, including specification, design, development, documentation, and testing.
• Collaborate within a team and with the upstream community.
• Presence and talks at open-source conferences.
  
  

Key Technical Skills & Experience

• Minimum five years of relevant practical experience working with production-grade embedded Linux (Yocto/Debian or Android) for Embedded/Consumer Electronics/IIoT Devices.
• Minimum of 5+ years of Embedded Linux experience, including SoC bring-up, BSP upgrades, platform security hardening or Secure boot (measure boot), remote attestation and linux security internals.
• Understand ARM CPU ISA & microarchitecture and experience of developing secure firmware on TrustZone, Trusted firmware - A/M or OP-TEE or equivalent secure OS.
• Experience with full boot chain and bootloaders like U-Boot, GRUB, and UEFI security hardening to establish root of trust on NXP i.MX series SoC.
• Good knowledge with applied cryptography.
• Familiar with OS image generation (Yocto/Debian or AOSP), packaging, release methodology, upgrades and updates, CVEs tracking and fixing, and CI/CD
• Participated in upstreaming of Linux projects like Linux kernel or maintaining open source projects is highly desired
• Knowledge of hardware protocols such as USB, PCIe, UART, I2C, SPI, and GPIO, as well as prior experience with Bluetooth and wireless technologies, is a plus.
• Hands-on experience with embedded hardware and software debugging using PC software tools, oscilloscopes, logic analyzers, etc…
• Track record of open source contributions to Linux kernel, userspace, or open source projects in general
  
  

Desirable Skills & Experience

• Familiarity with NXP iMX series (eg. iMX8xx & iMX9x) SoCs and internal architecture of different IP blocks especially security subsystem, how to securely provisioning SoCs for production
• Experience in enabling end-to-end security hardening solutions, eg. hardware assisted user data protection.
• Active Linux kernel developers or maintainers, particularly NXP SoCs.
• Published in open source forums, blogs, articles, etc
• Ideal candidates for this role would be curious, dependable, and adaptable, as well as pragmatic and capable of outreach.
  
  

Location: Remote from preferred countries

Preferred location: UK, Canada, Germany or the United States.

This position is also open to exceptional candidates who are residents of the United States of America, and Germany, UK. Depending on the successful candidate's eventual location, the position can be on either a fully remote or hybrid working basis. Please note that applications from candidates outside these locations will not be considered or acknowledged. We also are not sponsoring any visas or doing visa transfers for these locations.

International travel is required to attend Linaro Connect events, technical development sprints, and key community events.