We’re seeking a EmbeddedSecurity Engineer to join a security team in Sydney. This team is nimble, high-impact, and focused on protecting products and infrastructure against some of the most sophisticated adversaries in the world.

In this role, you’ll work closely with Hardware and Software Engineers, as well as Product and Systems Engineers, influencing every stage of the development lifecycle — from requirements and design to assessment and review. You’ll drive secure development practices, conduct in-depth assessments, and design security features tailored to complex threat models.

This is a unique opportunity to apply your expertise in embedded and hardware security to products where stakes are high, threat models are evolving, and your work has direct mission impact.

What you’ll do

• Conduct advanced hardware, firmware, and application-layer security assessments.
• Design and implement security features aligned to product threat models.
• Drive secure development practices by building tooling that improves velocity and reduces toil.
• Review products and features throughout their lifecycle for security assurance.
• Ensure products meet the highest standards in security, privacy, and compliance.
• Collaborate across embedded engineering teams to solve cross-product problems and elevate security culture.

What you’ll bring

• Bachelor’s in Computer Science, Mechatronics, or a related technical field (or equivalent experience).
• 8+ years’ experience in hardware security, reverse engineering, embedded engineering, or similar.
• Strong knowledge of computer architecture, microcontrollers, and embedded systems.
• Expertise in cryptographic protocols and hardware implementations.
• Familiarity with hardware attacks (side-channel, fault injection) and defences.
• Experience with secure boot, trusted execution environments, and IoT security principles.
• Proficiency with hardware hacking tools (e.g., JTAG debuggers, chip programmers).
• Skilled in firmware analysis, modification, and Linux command line.
• Programming experience with Python, Go (plus exposure to C/C++ desirable).
• Strong background in threat modelling, application security reviews, and API security.

Bonus points for

• Bootloader development experience.
• Knowledge of supply chain security, penetration testing methodologies, and SDR.
• Familiarity with standards such as Common Criteria, FIPS 140-3, NIST, or DISA STIG.
• Excellent communication skills to explain complex vulnerabilities clearly.

Please click Apply and send through your details, or you can email your details to me at [email protected] and I will be in touch