onsite
Security Engineer - Hardware Security Module - Netcetera Software Services GmbH
Security Engineer
Lead the design, implementation, and validation of secure hardware modules, ensuring robust cryptographic protection and compliance with industry standards.
About the role
Key Responsibilities
- Design, develop, and test secure firmware for Hardware Security Modules (HSMs) ensuring cryptographic integrity and resilience against side‑channel attacks.
- Collaborate with hardware teams to integrate secure elements into embedded platforms, defining secure boot, key management, and secure storage mechanisms.
- Conduct threat modeling, risk assessments, and security reviews, producing detailed documentation and compliance evidence for standards such as FIPS 140‑2/3, Common Criteria, and ISO/IEC 27001.
- Implement and maintain automated test frameworks for functional, performance, and security validation of HSMs.
- Provide technical guidance to cross‑functional teams on secure design principles, secure coding practices, and incident response procedures.
Requirements
- 5+ years of experience in security engineering with a focus on hardware security modules or secure cryptographic devices.
- Deep knowledge of cryptographic algorithms, secure key lifecycle management, and side‑channel mitigation techniques.
- Proficiency in embedded C/C++ development, firmware debugging, and hardware interfacing (SPI, I2C, UART).
- Experience with security standards (FIPS, Common Criteria, ISO/IEC 27001) and compliance testing.
- Strong analytical skills, excellent communication, and a proactive approach to problem solving.