Applied Intuition is hiring a Security Engineer (Purple Team) to ensure the security and integrity of critical products like Vehicle OS and Self-Driving Systems. In this multifaceted role, you will collaborate closely with cross-functional teams, taking on offensive security responsibilities and recommending defensive improvements.
What You'll Do
- Review, assess, and audit vehicle software platform code to identify security vulnerabilities using automated tests and tooling.
- Lead security verification and validation (V&V) initiatives and serve as the point of contact for all security V&V activities.
- Set up benches for penetration tests and risk assessments in an automotive environment.
- Take a hands-on approach to security by implementing fixes for identified vulnerabilities and coordinating with software teams for long-term remediation.
- Help design a secure vehicle software platform, connected vehicle architecture, and connected autonomous vehicles architecture.
- Conduct hands-on security testing and perform risk assessments to prioritize security bugs and threats.
- Compare mitigation strategies and prioritize mitigation efforts based on risk.
- Work with different business units to develop secure automotive products in line with ISO 21434 and UN R155 specifications.
- Work with software, security, and system & safety engineering to implement, identify, and advance security at Applied Intuition.
- Work with customers to deliver secure automotive products.
What We're Looking For
- A good understanding of embedded systems and how software interacts with hardware.
- Strong experience in penetration testing or hands-on security assessment of embedded systems.
- Good technical knowledge of Linux or QNX internals.
- Security expertise in one or more of the following: C, C++, x86, ARM, cryptography, or exploit development.
- Experience with network security (firewall configurations, ssh authentication).
- Proficiency in programming with C/C++ or Python.
- A solid understanding of hardware security primitives, including secure boot, key management, and cryptographic accelerators.
- Experience with security tooling, including vulnerability databases and automated fuzzing frameworks.
- Proficiency in code auditing and vulnerability research using both manual and automated testing tools.
- Experience performing formal risk assessments and the ability to prioritize mitigations based on risk levels.
- The ability to act as a technical lead and coordinate security projects between internal teams and external customers.
Nice to Have
- Experience in an automotive security environment and familiarity with protocols like CAN, Automotive Ethernet, and UDS.
- Understanding of automotive chips (SoCs/MCUs) and hardware security principles.
- Familiarity with automotive standards such as ISO 21434 and UN R155.
- Knowledge of Android Security or other embedded operating systems.
- Background in securing Hardware Security Modules (HSM) and Trusted Execution Environments (TEE).
Technical Stack
- C, C++, Python
- Linux, QNX
- x86, ARM
- Cryptography
Team & Environment
You will collaborate closely with cross-functional teams, primarily playing the role of offensive security engineer and recommending defensive techniques.
Benefits & Compensation
- Compensation: $150,000 - $220,000 USD annually + equity in the form of options and/or restricted stock units.
- Comprehensive health, dental, vision, life and disability insurance coverage.
- 401k retirement benefits with employer match.
- Learning and wellness stipends.
- Paid time off.
Work Mode
This is an onsite role. Our expectation is that employees primarily work from their Applied Intuition office 5 days a week. We offer locations in Mountain View, CA; Washington, D.C.; San Diego, CA; Ft. Walton Beach, FL; Ann Arbor, MI; London; Stuttgart; Munich; Stockholm; Bangalore; Seoul; and Tokyo.
Applied Intuition is an equal opportunity employer and federal contractor or subcontractor.
