Embedded Systems Security Engineer

Job Title

Embedded Systems Security Engineer

Role Summary

Engineer responsible for defining, assessing and validating security mechanisms for SoC/IC embedded products across hardware, firmware and software. The role sits within the SoC IC Security Engineering Team in the Chief Technology Office and collaborates with product development, evaluation labs and customers.

Primary mission: manage security requirements, perform pre- and post-silicon vulnerability analysis, advise on secure IP and support security certification activities.

Experience Level

Mid-level. No specific years required; role expects practical experience with embedded/SoC security and hardware/firmware interaction.

Responsibilities

Key responsibilities include defining and validating security mechanisms, assessing implementations, and supporting certification processes.

• Define and link security requirements to functional requirements; propose secure hardware and software IP considering power, area, and performance constraints.
• Assess and review security solution implementations and investigate root causes of security defects.
• Coordinate and conduct pre-silicon and post-silicon vulnerability analysis and risk assessments of hardware security architectures.
• Interface with customers, evaluation labs, and product development teams to integrate and verify security features.
• Provide guidance and training to development teams on secure design, implementation, integration, and verification.
• Support security certification efforts and apply the company security maturity process.
• Stay current with industry best practices and drive innovation in SoC/IC security solutions.

Requirements

Must-have technical skills and attributes, plus a short list of desirable qualifications.

• Must-have: Knowledge of SoC/IC architectures and practical experience designing or developing embedded secure systems.
• Must-have: Understanding of embedded firmware/software and its interaction with hardware; ability to assess security implications across HW/FW/SW.
• Must-have: Experience with Hardware Description Languages (SystemVerilog, VHDL), synthesis, schematics and layout workflow.
• Must-have: Strong communication skills, team collaboration ability, and methodical, reliable approach suitable for security-related tasks and certifications.
• Nice-to-have: Background in cryptography, fault injection, and side-channel analysis.
• Nice-to-have: Experience designing security-related IP or secure system architectures.
• Nice-to-have: Familiarity with security certification schemes (Common Criteria, SESIP, FIPS, OSCCA) and relevant international standards (ISO 21434, IEC 62443).
• Nice-to-have: Flexibility and adaptability to changing project needs.

Education Requirements

Preferred: BSEE, MSEE, or PhD in Security Engineering, Electronic Engineering, or a closely related technical field.

About the Company

Company: NXP Semiconductors

Headquarters: Nijmegen, Netherlands

NXP Semiconductors N.V. is a global semiconductor company that provides High Performance Mixed Signal and Standard Product solutions. With over 45,000 employees and operations in more than 35 countries, NXP is a leader in secure connectivity solutions for embedded applications, catering to automotive, industrial IoT, mobile, and communication infrastructure markets. The company is committed to innovation and sustainability, advancing a smarter, safer, and more sustainable world through technology.