CareerStation
SA

Lead engineer - App F/W & Mw-Linux

Sasken Technologies
Bangalore8-12 LPA Posted 27 Jun 2025
FULL TIME
threat modeling
Embedded Linux
Vulnerability Assessments
C++
Linux

Job Description

Job Summary

A seasoned security engineer with deep expertise in secure software development, embedded platforms, and Linux/Android ecosystems. This role demands end-to-end ownership of security integration, encompassing threat modeling, secure coding, cryptographic design, and CI/CD integration. The individual brings a proactive, collaborative mindset to infuse security into every stage of product development—ensuring resilience, compliance, and operational integrity.

Key Responsibilities

  • Lead security integration across the product development lifecycle: from concept to post-deployment.
  • Collaborate cross-functionally to infuse security into product architecture and design specifications.
  • Implement and maintain security mechanisms such as secure boot, authentication, encryption, and secure update mechanisms.
  • Conduct threat modeling and vulnerability assessments for features and full-stack product designs.
  • Automate security testing via CI/CD pipelines and integrate security gatekeeping across toolchains.
  • Perform and lead secure code reviews and contribute to organization-wide security best practices.
  • Work closely with the security architecture team to ensure alignment with governance policies and frameworks.

Education & Experience

  • Qualification: B.E./B.Tech/M.Tech in Computer Science, Electronics, or related field
  • Strong experience with embedded Linux, security engineering, and product lifecycle security integration

Core Competencies

  • Secure Development & Vulnerability Management
  • Expertise in secure boot, secure OTA updates, authentication protocols, access controls
  • Proficient in cryptographic algorithms and protocols: RSA, ECDSA, AES, PKCS
  • Experience with OpenSSL, HSMs, ARM TrustZones
  • Platform Expertise: Embedded Linux (ARM/x86), Android Security
  • Programming Languages: C, C++, Python, Java
  • Security Tooling: Security scanners, CI/CD security gates, gdb/ddd, Linux memory & process tools (top, ps, meminfo)
  • Cloud Security: Familiarity with AWS, Azure and securing cloud-native apps and microservices
  • Embedded Domain Specializations:
  • Multimedia, Telephony, Connectivity, Sensor integration, Carrier-grade platforms

Required Skills

threat modelingEmbedded LinuxVulnerability AssessmentsC++Linux
Join WhatsApp Channel