Lead Developer/Architect (Embedded Software) (all genders)

• Technical software lead for one of our security-related software projects, functioning as the link between the SW developers and management.
• Responsible for determining the technical direction and feature roadmap for the project
• Responsible for the overall project software architecture
• Guiding and supporting the software devs with systems and software technical know-how
• Conducting technical interviews with new software engineers
• Liasing with other stakeholders in the project to understand technical/feature priorities and incorporating this into the feature roadmap
• Initially the role will require hands-on systems and software engineering (either C or python and shell scripting), with the responsibilities shifting to those of a lead developer/architect as more software devs join the team
• A great opportunity to start at the beginning of a new technical team and grow into a role with greater technical responsibility

We develop both ECU software (that runs in the vehicles) and independent tools and products that are used for testing and development of security features.

Examples of current and upcoming projects include:

• Creation of standardised, platform-based software solutions for security problems common across ECU's - e.g. secure activation of debug features, secure boot, data-at-rest encryption and secure delete, initial (factory) key provisioning, as well as middleware-based solutions such as crypto-API's, privilege proxy, etc.
• Contribution to the development of a standardised secure OS/TEE solution for all vehicle ECU's - including CA/TA development
• Integration and bring-up of security features on various hardware platforms - e.g. secure OS/TEE, IDS
• Creation and population of databases - for example for incident response and field monitoring
• Development of a security test automation framework and automated security tests
• Development of tools/scripts/utilities for integration in the CI/CD pipelines to achieve "shift-left" in the DevSecOps sense

• Must have

  • Extensive professional experience of several years of systems/software engineering experience on *nix
  • Highly proficient in C/C++
  • Strong shell scripting (bash/sh/etc.)
  • Have a good grasp of (operating) system fundamentals - e.g. processes and process life-cycle, threads, sockets, pipes
  • Well-versed in CI/CD & DevOps technologies, revision control, build pipelines, etc.
  • Understanding of software testing and QA methodologies and metrics and how to apply them to improve code/product quality
  • High level of understanding of (secure) networking and protocol concepts - e.g. routing, port scanning, TCP/IP, UDP, protocol stacks, tunnels, proxies, etc.  
  • Solid understanding of cryptographic primitives and understand how to combine them to design secure systems
  • Excellent social and communication skills
  • Fluent English skills, German skills would be a great advantage

   

  Nice to have skills and experience

  • Pentesting/CTF/offensive security experience
  • Automotive protocols, software etc. - e.g. CAN, automotive ethernet, diagnostics, Autosar
  • Experience with secure OS/TEE integration and development - including CA/TA development
  • Key management systems and initial (factory) key provisioning processes
  • Secure boot implementation
  • Security ceritifications (such as OSCP)
  • (Security) source code review
  • Developing or working with test automation frameworks
  • System hardening experience - e.g. MAC/DAC, kernel, hardened toolchain configuration, config
  • Network security - e.g. firewall/routing/filtering/sniffing
  • JTAG debugging
  • Experience solving technical problems relating to root-of-trust/chain-of-trust and (hardware) trust anchors
  • Previously held a lead technical role
  • Software packaging and distribution under Linux (e.g. deb or rpm)

• Born digital: Benefit from our many years of experience and our agile up-to-date culture.
• Life-Work-Balance: Decide for yourself where and when you work: across locations in the Digital Workspace, part-time, completely flexible, taking a sabbatical – no problem with us.
• Appreciation: We rely on flat hierarchies and are respectful, loyal and appreciative.

• Perspectives: We offer very different and individually tailored career models and a steep learning curve.
• Benefits: In addition to retirement provisions, employee discounts and a wide range of sports activities, we offer great company outings and – hopefully soon again – legendary parties.
• Corona can't stop us: We remain steady even in stormy times & provide you with the support you need to work from home in a healthy and well-equipped manner. Remote onboarding included, of course!