Senior Embedded Security Engineer (Cybersecurity)

About the role

As a Senior Embedded Security Engineer you will lead the design and implementation of security foundations for Bosch automotive platforms. You will work on secure boot, trusted execution environments and runtime isolation to protect next‑generation vehicle ECUs.

Key responsibilities

• Design and implement Secure Boot, Chain of Trust and Measured Boot mechanisms.
• Define and maintain Root of Trust (RoT) and integrate Trusted Execution Environments (TEE).
• Work with Secure Partition Manager and secure OS components, supporting Automotive PKI, V2X security and SCMS.
• Implement key management, provisioning and secure key injection processes.
• Design runtime isolation using hypervisors (Xen, Jailhouse, ACRN) and VM separation.
• Develop application sandboxing, containerization and SELinux/SEAndroid policies.
• Implement Integrity Measurement Architecture (IMA) and ensure memory protection with MPU, MMU and SMMU.

Required profile

• Degree in Computer Science, Electrical Engineering, Embedded Electronics or related field.
• 3+ years of experience in embedded systems and Embedded Linux.
• Strong C/C++ programming skills and experience with bootloaders and low‑level system architecture.
• Solid knowledge of automotive cybersecurity, cryptography (PKI, TLS) and hardware‑based security mechanisms.
• Hands‑on experience with ARM architecture, TrustZone, hypervisors and Linux security frameworks.

Required skills

• Embedded Linux
• C / C++
• Secure Boot, Chain of Trust, Measured Boot
• Root of Trust, Trusted Execution Environment (TEE)
• Secure Partition Manager, secure OS
• Automotive PKI, V2X security, SCMS
• Key Management, Key Provisioning, Secure Key Injection
• Hypervisors (Xen, Jailhouse, ACRN), VM isolation
• Application sandboxing, containerization
• SELinux / SEAndroid policies
• Integrity Measurement Architecture (IMA)
• MPU, MMU, SMMU
• ARM TrustZone
• Linux security frameworks (SELinux, IMA, netfilter)
• Cryptography fundamentals (PKI, TLS)