Security Firmware Engineer

Qorvo (Nasdaq: QRVO) supplies innovative semiconductor solutions that make a better world possible. We combine product and technology leadership, systems-level expertise and global manufacturing scale to quickly solve our customers' most complex technical challenges. Qorvo serves diverse high-growth segments of large global markets, including consumer electronics, smart home/IoT, automotive, EVs, battery-powered appliances, network infrastructure, healthcare and aerospace/defense. Visit www.qorvo.com to learn how our diverse and innovative team is helping connect, protect and power our planet.

At Qorvo, we create innovative RF solutions – we innovate and shape the future of wireless communications. Within the Connectivity Systems business unit, you will get an opportunity to shape the future of the connected home and pioneer cutting-edge connectivity solutions. Typical products that embed our solutions are smart lighting, thermostats, smart home speakers, mobile phones, laptops, access points, etc.

Job description:

You will work in the Silicon Firmware group as a member of the security team, focusing on the security of our silicon and connected products of the future, using ultra-wideband (UWB), Matter, Thread, Zigbee and Bluetooth.

Aware of the latest security threats, you will collaborate on hardware design and develop firmware to harden our products against these.

Responsibilities:

• Develop and design secure firmware, including threat modeling, security protocols, and cryptographic algorithms, with a focus on resource-constrained and connected devices.
• Implement and test secure firmware and tooling for our silicon, including subjects such as secure boot and over-the-air upgrades, cryptographic hardware acceleration, and other cryptographic services in the context of wireless protocols.
• Conduct thorough code reviews to identify security vulnerabilities and implement appropriate solutions, particularly in the context of wireless communication protocols.
• Perform penetration testing, fuzzing, and other security testing techniques to ensure the robustness of embedded systems against potential threats, including attacks targeting BLE, UWB, and 802.15.4 communication.
• Ensure compliance with industry standards and regulations (such as ISO 27001, NIST, and IEC 62443) and industry and government security certification programs (such as PSA, SESIP and Common Criteria) throughout the development lifecycle, with a specific focus on wireless communication security.
• Create, review, and maintain security documentation, including security requirements, design specifications, and threat models, with consideration for the unique challenges posed by the IoT ecosystem.
• Work closely with cross-functional teams, including software engineers, hardware engineers, and product managers, to integrate security best practices into the development process for wireless-enabled embedded systems.
• Participate in incident response activities, including investigating security incidents and implementing corrective measures, with a particular emphasis on mitigating risks associated with wireless communication vulnerabilities.

Qualifications:

• You hold a Bachelor’s or Master’s degree in Computer Science, Electrical Engineering, or equivalent by experience.
• Minimum of 3 years of experience in embedded systems development on resource-constrained devices, with a focus on security, and experience working with wireless communication standards such as Bluetooth Low Energy (BLE), Ultra-Wideband (UWB), and IEEE 802.15.4 .
• Working knowledge of cryptographic principles, secure coding practices, and common security vulnerabilities (such as buffer overflows, injection attacks, and side-channel attacks).
• Proficiency in C/C++ and Python programming languages, with experience in embedded software development for wireless-enabled devices.
• Ability to read and debug assembly code, using tools such as disassemblers and debug probes.
• Experience in automated testing of embedded solutions.
• Familiarity with security tools and frameworks, such as static code analysis tools, debuggers, and vulnerability scanners, with a focus on their application in the context of wireless communication security.
• Excellent communication and interpersonal skills, with the ability to effectively communicate technical concepts to non-technical stakeholders.
• An understanding of the wider context of a connected device, including for example cloud enrollment and production constraints.

Our offering:

• Great team of enthusiastic co-workers 
• Work for a global leader in scalable and dynamic RF solutions 
• Exciting job in a strongly growing, international high-tech company 
• Opportunities for professional development and training.
• A competitive salary package, in line with your expertise 
• Flexible work hours and remote work options.

Location:

• Zele, Belgium (Hybrid)
• Utrecht, Netherlands (Hybrid)

#LI-AC1

MAKE A DIFFERENCE AT QORVO  

We are Qorvo. We do more than create innovative RF and Power solutions for the mobile, defense and infrastructure markets – we are a place to innovate and shape the future of wireless communications. It starts with our employees. As a unified global team, we bring a commitment to excellence, growth and a passion for creating what's next. Explore the possibilities with us.